CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CBLMariner•added 2026/02/02 3:31 p.m.•4 views

CVE-2026-21637 affecting package nodejs for versions less than 20.14.0-11

CVE-2026-21637 affecting package nodejs for versions less than 20.14.0-11. A patched version of the package is available...

7.5CVSS5.3AI score0.00056EPSS

Tenable Nessus•added 2026/01/31 12:0 a.m.•5 views

Fedora 43 : nodejs24 (2026-5cd409edfa)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5cd409edfa advisory. Update to version 24.13.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

9.1CVSS6.9AI score0.00109EPSS

Exploits2References9

Wolfi•added 2026/01/28 1:48 a.m.•4 views

GHSA-W2PG-HW7V-F7M9 vulnerabilities

Vulnerabilities for packages: nodejs...

Wolfi•added 2026/01/28 1:48 a.m.•4 views

GHSA-GGXC-26FX-987R vulnerabilities

Vulnerabilities for packages: nodejs...

Wolfi•added 2026/01/28 1:48 a.m.•3 views

GHSA-XP28-3FV9-33C6 vulnerabilities

Vulnerabilities for packages: nodejs...

Wolfi•added 2026/01/28 1:48 a.m.•4 views

CVE-2024-22019 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS5.9AI score0.0038EPSS

GHSA-XP28-3FV9-33C6 vulnerabilities

Vulnerabilities for packages: nodejs...

GHSA-XFGW-QCMV-354J vulnerabilities

Vulnerabilities for packages: nodejs...

GHSA-GGXC-26FX-987R vulnerabilities

Vulnerabilities for packages: nodejs...

GHSA-9JWR-P39P-HWG2 vulnerabilities

Vulnerabilities for packages: nodejs...

Chainguard•added 2026/01/28 1:17 a.m.•5 views

CVE-2025-59466 vulnerabilities

Vulnerabilities for packages: nodejs...

7.5CVSS5.9AI score0.0003EPSS

GHSA-J65R-8HRG-QC6X vulnerabilities

Vulnerabilities for packages: nodejs...

OSV•added 2026/01/21 4:46 a.m.•3 views

MAL-2026-406 Malicious code in aws-crt-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82067e17b63298c1e09a6b616010b7a8ebf7f607510795f98428f8e5305994ab The package aws-crt-nodejs was found to contain malicious code. Source: ghsa-malware 40ddba391f5ca6a4fa75fe5e5440dfd1f57833b391d8db3c2e5918aef284a294...

5.5AI score

Exploits0References1

Snyk•added 2026/01/21 4:46 a.m.•3 views

Malicious Package

Overview aws-crt-nodejs is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.5AI score

Exploits0References2

OSSF Malicious Packages•added 2026/01/21 4:46 a.m.•8 views

Malicious code in aws-crt-nodejs (npm)

5.5AI score

Exploits0References1

Tenable Nessus•added 2026/01/16 12:0 a.m.•5 views

MiracleLinux 7 : rh-nodejs8-nodejs-8.11.4-1.el7 (AXSA:2019-3540:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3540:01 advisory. nodejs: Out of bounds OOB write via UCS-2 encoding CVE-2018-12115 Tenable has extracted the preceding description block directly from the MiracleLin...

8.8CVSS7AI score0.01501EPSS

Exploits0References6

Wolfi•added 2026/01/14 7:48 p.m.•3 views

GHSA-P2WW-P57H-W5M7 vulnerabilities

Vulnerabilities for packages: nodejs...

7AI score