Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-19502

Malicious code in bioql PyPI...

8.8CVSS7.1AI score0.01245EPSS
Exploits0References3
OSV
OSV
added 2024/12/16 1:55 p.m.15 views

BIT-NODE-MIN-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

8.8CVSS7.7AI score0.01245EPSS
Exploits0References7
OSV
OSV
added 2024/06/04 9:50 a.m.26 views

BIT-NODE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

8.8CVSS7.7AI score0.01245EPSS
Exploits0References7
F5 Networks
F5 Networks
added 2024/05/10 1:34 p.m.40 views

K000139579: Node.js vulneraility CVE-2024-21891

Security Advisory Description Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects...

8.8CVSS7AI score0.01245EPSS
Exploits0
NVD
NVD
added 2024/02/20 2:15 a.m.24 views

CVE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

8.8CVSS5.7AI score0.01245EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/02/20 2:15 a.m.37 views

CVE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

8.8CVSS6.8AI score0.01245EPSS
Exploits0References3
CVE
CVE
added 2024/02/20 1:31 a.m.175 views

CVE-2024-21891

CVE-2024-21891 affects Node.js 20/21 when using the experimental permission model. The issue arises from overwriting built-in path normalization used by node:fs, enabling a filesystem permission model bypass via path traversal. Impact is high (confidentiality/integrity/availability could be affec...

8.8CVSS7.4AI score0.01245EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/02/20 1:31 a.m.22 views

CVE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

8.8CVSS7.2AI score0.01245EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/02/20 1:31 a.m.16 views

CVE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

7.9CVSS7.7AI score0.01245EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/20 1:31 a.m.39 views

CVE-2024-21891

Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...

7.9CVSS6AI score0.01245EPSS
Exploits0References3
Rows per page
Query Builder