CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

136 matches found

Tenable Nessus•added 2025/05/14 12:0 a.m.•8 views

Alibaba Cloud Linux 3 : 0247: nodejs:20 (ALINUX3-SA-2024:0247)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0247 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-39331: A previously disclosed...

9.8CVSS7AI score0.01642EPSS

Exploits1References11

Tenable Nessus•added 2025/05/14 12:0 a.m.•8 views

Alibaba Cloud Linux 3 : 0022: nodejs:14 (ALINUX3-SA-2021:0022)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0022 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-10531: An issue was discovered in...

8.8CVSS7.5AI score0.89427EPSS

Exploits1References4

Gentoo Linux•added 2025/05/14 12:0 a.m.•35 views

Node.js: Multiple Vulnerabilities

Background Node.js is a JavaScript runtime built on Chrome’s V8 JavaScript engine. Description Multiple vulnerabilities have been discovered in Node.js. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround Ther...

9.8CVSS7.6AI score0.9439EPSS

Exploits20

Tenable Nessus•added 2025/05/14 12:0 a.m.•6 views

Alibaba Cloud Linux 3 : 0029: nodejs:20 (ALINUX3-SA-2025:0029)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0029 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-22150: Undici is an HTTP/1.1...

7.7CVSS6.5AI score0.00605EPSS

Exploits0References4

IBM Security Bulletins•added 2025/04/29 2:31 a.m.•59 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to Node.js

Summary Vulnerabilities in Node.js such as remote attacker bypass security restrictions may affect IBM Spectrum Control. Vulnerability Details CVEID:CVE-2023-30581 DESCRIPTION: Node.js could allow a remote attacker to bypass security restrictions, caused by the use of proto in...

8.8CVSS8AI score0.02122EPSS

Exploits1Affected Software1

Wolfi•added 2025/03/22 10:43 a.m.•7 views

GHSA-M27W-WVC9-V4MQ vulnerabilities

Vulnerabilities for packages: nodejs...

7.5AI score

Exploits0

Chainguard•added 2025/03/22 10:12 a.m.•9 views

GHSA-M27W-WVC9-V4MQ vulnerabilities

Vulnerabilities for packages: nodejs...

7.5AI score

Exploits0

Wolfi•added 2025/03/21 4:43 p.m.•10 views

GHSA-F9JC-68CV-WP63 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5AI score

Exploits0

IBM Security Bulletins•added 2025/03/21 12:56 p.m.•20 views

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities found in Java and Node.js

Summary There are multiple vulnerabilities in Java and Node.js used by IBM Cloud Transformation Advisor CVE-2019-20916, CVE-2021-37714, CVE-2016-2175, CVE-2025-26791, CVE-2025-1470, CVE-2025-1471. Vulnerability Details CVEID:CVE-2019-20916 DESCRIPTION: pypa pip package for python could allow a...

7.8CVSS7.8AI score0.05893EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2025/03/12 6:33 p.m.•9 views

Security Bulletin: Multiple vulnerabilities in nodejs affect IBM Business Automation Workflow Configuration Editor (nodejs January security release)

Summary IBM Business Automation Workflow Configuration Editor repackages a nodejs runtime and multiple application level models. Vulnerabilities have been reported for the runtime and some modules.. Vulnerability Details CVEID:CVE-2025-23083 DESCRIPTION: With the aid of the diagnosticschannel...

8.7CVSS8.2AI score0.01289EPSS

Exploits1Affected Software2

Node JS Blog•added 2025/03/07 12:0 a.m.•12 views

Updates on CVE for End-of-Life Versions

Updates on CVE for End-of-Life Versions Update on the issuance of CVEs to mark End-of-Life Node.js Versions TL;DR: CVE-2025-23087, CVE-2025-23088, and CVE-2025-23089 issued to tag EOL versions have been rejected by the CVE Program. The Node.js team has, therefore, decided to update previous...

7.2AI score

Exploits0

IBM Security Bulletins•added 2025/02/27 4:8 p.m.•13 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to multiple vulnerabilities due to Node.js (CVE-2025-23085, CVE-2025-23084 & CVE-2025-22150)

Summary IBM App Connect Enterprise is vulnerable to multiple vulnerabilities due to Node.js. Vulnerability Details CVEID:CVE-2025-23085 DESCRIPTION: A memory leak could occur when a remote peer abruptly closes the socket without sending a GOAWAY notification. Additionally, if an invalid header wa...

6.8CVSS9.2AI score0.01289EPSS

Exploits1Affected Software1

Wolfi•added 2025/02/25 3:16 p.m.•42 views

GHSA-9CCP-4GJG-264G vulnerabilities

Vulnerabilities for packages: nodejs...

7.5AI score

Exploits0

Wolfi•added 2025/02/25 3:16 p.m.•47 views

GHSA-CWRJ-J635-2M7W vulnerabilities

Vulnerabilities for packages: nodejs...

7.5AI score

Exploits0