Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.7 views

Photon OS 4.0: Nodejs PHSA-2025-4.0-0820

An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0820. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

6.5CVSS7.3AI score0.00466EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2025/02/25 4:7 p.m.12 views

CVE-2025-23090 affecting package nodejs for versions less than 20.14.0-4

CVE-2025-23090 affecting package nodejs for versions less than 20.14.0-4. A patched version of the package is available...

7.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/06 2:54 a.m.5 views

CVE-2025-23090

With the aid of the diagnosticschannel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage...

7.7CVSS7.4AI score
Exploits0References1
NVD
NVD
added 2025/01/22 2:15 a.m.14 views

CVE-2025-23090

Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083...

Exploits0
Wolfi
Wolfi
added 2025/01/22 2:15 a.m.18 views

CVE-2025-23090 vulnerabilities

Vulnerabilities for packages: nodejs...

7.3AI score
Exploits0
Chainguard
Chainguard
added 2025/01/22 2:15 a.m.18 views

CVE-2025-23090 vulnerabilities

Vulnerabilities for packages: nodejs...

6.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2025/01/22 2:15 a.m.4 views

CVE-2025-23090

Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083...

6.7AI score
Exploits0References2
OSV
OSV
added 2025/01/22 2:15 a.m.3 views

UBUNTU-CVE-2025-23090

With the aid of the diagnosticschannel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage...

7.7CVSS5.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/22 1:11 a.m.4 views

CVE-2025-23090

...

7.4AI score
Exploits0
CVE
CVE
added 2025/01/22 1:11 a.m.439 views

CVE-2025-23090

CVE-2025-23090 is withdrawn as a duplicate of CVE-2025-23083. Connected records confirm CVE-2025-23083 affects Node.js packages for versions before 20.14.0-4, with patches available in advisory channels (nodejs20). These sources describe the same underlying issue and provide remediation guidance ...

6.9AI score
Exploits0
Rows per page
Query Builder