10 matches found
Photon OS 4.0: Nodejs PHSA-2025-4.0-0820
An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0820. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2025-23090 affecting package nodejs for versions less than 20.14.0-4
CVE-2025-23090 affecting package nodejs for versions less than 20.14.0-4. A patched version of the package is available...
CVE-2025-23090
With the aid of the diagnosticschannel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage...
CVE-2025-23090
Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083...
CVE-2025-23090 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2025-23090 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2025-23090
Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083...
UBUNTU-CVE-2025-23090
With the aid of the diagnosticschannel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage...
CVE-2025-23090
...
CVE-2025-23090
CVE-2025-23090 is withdrawn as a duplicate of CVE-2025-23083. Connected records confirm CVE-2025-23083 affects Node.js packages for versions before 20.14.0-4, with patches available in advisory channels (nodejs20). These sources describe the same underlying issue and provide remediation guidance ...