Lucene search
K

13 matches found

OSV
OSV
added 2024/12/16 1:56 p.m.10 views

BIT-NODE-MIN-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS7.1AI score0.01107EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2023/11/14 5:0 p.m.4 views

nodejs: integrity checks according to policies can be circumvented

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to node's policy implementation, thus effectively disabling the integrity check...

7.5CVSS7.3AI score0.01107EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.44 views

Fedora 39 : nodejs20 (2023-7b52921cae)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-7b52921cae advisory. 2023-10-13, Version 20.8.1 Current, @RafaelGSS This is a security release. Notable Changes The following CVEs are fixed in this release:...

9.8CVSS7.2AI score0.99999EPSS
Exploits19References7
Microsoft CVE
Microsoft CVE
added 2023/10/23 7:0 a.m.5 views

When the Node.js policy feature checks the integrity of a resource against a trusted manifest the application can intercept the operation and return a forged checksum to the node's policy implementation thus effectively disabling the integrity check. Impacts: This vulnerability affects all users using the experimental policy mechanism in all active release lines: 18.x and 20.x. Please note that at the time this CVE was issued the policy mechanism is an experimental feature of Node.js.

...

7.5CVSS7AI score0.01107EPSS
Exploits0
OSV
OSV
added 2023/10/18 4:15 a.m.2 views

DEBIAN-CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS7AI score0.01107EPSS
Exploits0References1
OSV
OSV
added 2023/10/18 4:15 a.m.5 views

ALPINE-CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/10/18 4:15 a.m.49 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References4
OSV
OSV
added 2023/10/18 4:15 a.m.3 views

UBUNTU-CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/10/18 3:55 a.m.26 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7AI score0.01107EPSS
Exploits0References8
Cvelist
Cvelist
added 2023/10/18 3:55 a.m.29 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.7AI score0.01107EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2023/10/18 3:55 a.m.32 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

7.5CVSS7.6AI score0.01107EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.14 views

PT-2023-6457 · Node.Js +6 · Node.Js +6

Name of the Vulnerable Software and Affected Versions: Node.js versions 18.x through 20.x Description: The issue arises when the Node.js policy feature checks the integrity of a resource against a trusted manifest. An application can intercept this operation and return a forged checksum to the...

9.8CVSS6.5AI score0.99999EPSS
Exploits22References175
RedhatCVE
RedhatCVE
added 2023/10/16 4:49 p.m.51 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to node's policy implementation, thus effectively disabling the integrity check...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References3
Rows per page
Query Builder