Lucene search
K

8 matches found

OSV
OSV
added 2026/04/13 10:59 a.m.4 views

SUSE-SU-2026:21181-1 Security update for nodejs24

This update for nodejs24 fixes the following issues: Update to version 24.14.1. Security issues fixed: - CVE-2026-21717: trivially predictable hash collisions due to flaw in V8's string hashing mechanism allows for performance degradation via a crafted request bsc1260494. - CVE-2026-21716:...

7.5CVSS5.8AI score0.26356EPSS
Exploits0References19
OSV
OSV
added 2026/04/06 7:58 a.m.3 views

BIT-NODE-MIN-2026-21712

A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN containing invalid characters, crashing the Node.js process...

5.7CVSS6.7AI score0.00325EPSS
Exploits0References3
OSV
OSV
added 2026/04/06 7:58 a.m.5 views

BIT-NODE-2026-21712

A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN containing invalid characters, crashing the Node.js process...

5.7CVSS6.7AI score0.00325EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/31 10:32 p.m.6 views

CVE-2026-21712

A flaw was found in Node.js. This vulnerability allows an attacker to cause a Denial of Service DoS by providing a malformed Internationalized Domain Name IDN to the url.format function. When processed, this malformed input triggers an internal error, causing the Node.js application to crash. Thi...

6.5CVSS6.4AI score0.00325EPSS
Exploits0References5
OSV
OSV
added 2026/03/30 4:16 p.m.4 views

UBUNTU-CVE-2026-21712

A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN containing invalid characters, crashing the Node.js process...

5.7CVSS5.8AI score0.00325EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/30 3:13 p.m.2 views

CVE-2026-21712

A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN containing invalid characters, crashing the Node.js process...

5.7CVSS6.2AI score0.00325EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/03/30 3:13 p.m.2 views

CVE-2026-21712

A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN containing invalid characters, crashing the Node.js process...

5.7CVSS6.2AI score0.00325EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-21712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in Node.js URL processing causes an assertion failure in native code when url.format is called with a malformed internationalized domain name IDN...

5.7CVSS6.8AI score0.00325EPSS
Exploits0References3
Rows per page
Query Builder