CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

91 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в node-glob-parent

This affects the glob-parent package before version 5.1.2. The enclosure regex used to check for strings ending with an enclosure containing a path separator is affected...

7.5CVSS7.2AI score0.00964EPSS

Exploits1References1

Atlassian•added 2026/03/04 6:29 p.m.•14 views

DoS (Denial of Service) glob-parent Dependency in Jira Service Management Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 5.15.2, 5.16.0, 5.17.0, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, and 11.2.0 of Jira Service Management Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVS...

7.5CVSS5.8AI score0.00964EPSS

Exploits1

Atlassian•added 2026/03/04 6:29 p.m.•14 views

DoS (Denial of Service) glob-parent Dependency in Jira Software Data Center

This High severity DoS Denial of Service vulnerability was introduced in versions 9.15.2, 9.16.0, 9.17.0, 10.2.0, 10.3.0, 10.4.0, 10.5.0, 10.6.0, 10.7.1, 11.0.0, 11.1.0, and 11.2.0 of Jira Software Data Center. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVSS Vector o...

7.5CVSS5.7AI score0.00964EPSS

Exploits1

Oracle linux•added 2026/02/18 12:0 a.m.•7 views

nodejs:22 security update

nodejs 1:22.22.0-1 - Update to 22.22.0 Resolves: RHEL-141879 nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 2.0.20-2 - Patch bundled glob-parent - Resolves: CVE-2021-35065 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517 2.0.15-1 - Resolves: RHBZ2005419 - Resolves...

9.1CVSS5.5AI score0.00964EPSS

Exploits5

Oracle linux•added 2026/02/18 12:0 a.m.•6 views

nodejs:20 security update

nodejs 1:20.20.0-1 - Update to version 20.20.0 Resolves: RHEL-141917 nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 2.0.20-2 - Patch bundled glob-parent - Resolves: CVE-2021-35065 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517 2.0.15-1 - Resolves: RHBZ2005419 - Resolves...

9.1CVSS5.5AI score0.00964EPSS

Exploits5

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 9 : nodejs:18 (AXSA:2023-6072:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6072:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.00416EPSS

Exploits5References9

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 7 : rh-nodejs14-nodejs-nodemon-2.0.20-2.el7, rh-nodejs14-nodejs-14.21.1-3.el7 (AXSA:2023-4997:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4997:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 minimist: prototype pollution CVE-2021-44906 node-fetch: exposure of sensitive...

9.8CVSS6.8AI score0.01543EPSS

Exploits5References7

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : nodejs:16 (AXSA:2023-5262:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5262:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS8AI score0.00416EPSS

Exploits5References9

Tenable Nessus•added 2025/12/04 12:0 a.m.•1 views

RockyLinux 9 : nodejs:18 (RLSA-2023:2654)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2654 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-49...

8.6CVSS7.1AI score0.00416EPSS

Exploits5References17

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-1421

Malware in sbrugna...

7.5CVSS7.3AI score0.00964EPSS

Exploits1References24

Tenable Nessus•added 2025/06/16 12:0 a.m.•2 views

TencentOS Server 3: nodejs-nodemon (TSSA-2023:0048)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0048 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS6.9AI score0.00416EPSS

Exploits1References2

Tenable Nessus•added 2024/06/03 12:0 a.m.•22 views

RHEL 8 : cockpit-ovirt (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nodejs-glob-parent: Regular expression denial of service CVE-2020-28469 Note that Nessus has not tested for this...

7.5CVSS8.5AI score0.00964EPSS

Exploits1References1

Tenable Nessus•added 2024/06/03 12:0 a.m.•29 views

RHEL 9 : pcs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - async: Prototype Pollution in async CVE-2021-43138 - The glob-parent package before 6.0.1 for Node.js...

7.8CVSS8.6AI score0.03719EPSS

Exploits4References5

Tenable Nessus•added 2024/05/11 12:0 a.m.•18 views

RHEL 7 : glob-parent (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - glob-parent: Regular Expression Denial of Service CVE-2021-35065 Note that Nessus has not tested for this issue but...

7.5AI score0.00416EPSS

Exploits1References1

Tenable Nessus•added 2024/05/11 12:0 a.m.•24 views

RHEL 6 : glob-parent (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - glob-parent: Regular Expression Denial of Service CVE-2021-35065 Note that Nessus has not tested for this issue but...

7.5AI score0.00416EPSS

Exploits1References1

Tenable Nessus•added 2024/05/11 12:0 a.m.•25 views

RHEL 8 : nodejs-glob-parent (Unpatched Vulnerability)

8.6AI score0.00964EPSS

Exploits1References1

OSV•added 2024/03/06 10:53 a.m.•28 views

BIT-GULP-2020-28469 Regular Expression Denial of Service (ReDoS)

This affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator...

7.5CVSS8.5AI score0.00964EPSS

Exploits1References8

IBM Security Bulletins•added 2023/12/12 5:28 p.m.•32 views

Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vulnerable to multiple vulnerabilities

Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is affected by opennms-opennms-source-26.0.0-1 dependent packages. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2020-8116 DESCRIPTION: Node.js dot-prop could allow a...

9.8CVSS9.9AI score0.84982EPSS

Exploits32Affected Software1

Tenable Nessus•added 2023/11/07 12:0 a.m.•26 views

Rocky Linux 8 : nodejs:14 (RLSA-2022:0350)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0350 advisory. - This affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator...

9.8CVSS8.1AI score0.01262EPSS

Exploits6References19