CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Joyent SmartOS is an open source UNIX-like operating system from SmartOS Open Source. A security vulnerability exists in Joyent SmartOS that stems from the presence of a static host SSH key in the 60f76fd2-143f-4f57-819b-1ae32684e81b image...

8.3CVSS6.7AI score0.00126EPSS

Exploits0References4

CNVD•added 2021/06/02 12:0 a.m.•8 views

Unspecified vulnerability in Joyent trim-newlines

trim-newlines is an npm package that modifies line breaks. A security vulnerability exists in Joyent trim-newlines, which stems from an issue related to the .end method as applied to Node.js in versions 3.0.1 and 4.0.1 and earlier. No details of the vulnerability are available at this time...

7.5CVSS6.6AI score0.01642EPSS

Exploits0References1

CNVD•added 2020/06/16 12:0 a.m.•4 views

chownr package competitive conditions issue vulnerability

Joyent Node.js is a web application platform built on top of Google's V8 JavaScript engine from Joyent, Inc. The platform is used to build highly scalable applications and write code that can handle tens of thousands of simultaneous connections to a physical machine. chownr package is one of the...

2.5CVSS3.6AI score0.00048EPSS

Exploits1References1

CNVD•added 2020/06/04 12:0 a.m.•1 views

Joyent Node.js Authorization Issues Vulnerability

Joyent Node.js is the United States Joyent company's set of web applications built on top of the Google V8 JavaScript engine platform. The platform is primarily used for building highly scalable applications and writing code that can handle tens of thousands of simultaneous connections to a singl...

7.4CVSS8.6AI score0.01183EPSS

Exploits1References1

CNVD•added 2020/02/11 12:0 a.m.•0 views

Joyent Node.js Input Validation Error Vulnerability

9.8CVSS9.2AI score0.01338EPSS

Exploits1References1

CNVD•added 2019/04/24 12:0 a.m.•0 views

Juju Core Joyent provider encryption issue vulnerability

Juju Infrastructure specializes in software and solutions. An encryption issue vulnerability exists in Juju Core's Joyent provider prior to version 1.25.5. The vulnerability stems from a network system or product that does not properly use the relevant cryptographic algorithms and can be exploite...

7.5CVSS6.5AI score0.00358EPSS

Exploits0References1

Veracode•added 2019/04/23 5:48 a.m.•18 views

Information Disclosure

github.com/juju/juju is vulnerable to information disclosure. The SSH private key is uploaded by the joyent provider, which could lead to the exposure of the private keys and grant SSH access to an attacker who is able to obtain the private key...

7.5CVSS6.9AI score0.00358EPSS

Exploits0References2Affected Software1