Lucene search
K

127 matches found

OSV
OSV
added last week4 views

RHSA-2026:35892 Red Hat Security Advisory: nodejs:22 security, bug fix, and enhancement update

Bulletin has no description...

8.1CVSS5.9AI score0.02806EPSS
Exploits1References66
RedHat Linux
RedHat Linux
added 2026/07/06 3:7 p.m.8 views

Important: Red Hat Security Advisory: nodejs:22 security, bug fix, and enhancement update

An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.5AI score0.02806EPSS
Exploits1References15
RedHat Linux
RedHat Linux
added 2026/07/06 2:47 p.m.8 views

Important: Red Hat Security Advisory: nodejs:24 security, bug fix, and enhancement update

An update for the nodejs:24 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.5AI score0.02806EPSS
Exploits1References17
OSV
OSV
added 2026/07/06 10:8 a.m.4 views

RHSA-2026:35842 Red Hat Security Advisory: nodejs22 security, bug fix, and enhancement update

Bulletin has no description...

8.1CVSS5.9AI score0.02806EPSS
Exploits1References66
RedHat Linux
RedHat Linux
added 2026/07/06 4:52 a.m.8 views

Important: Red Hat Security Advisory: nodejs24 security, bug fix, and enhancement update

An update for nodejs24 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.5AI score0.02806EPSS
Exploits1References17
RedHat Linux
RedHat Linux
added 2026/07/03 5:27 a.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs22: nodejs22-22.23.1-2.hum1 aarch64, x8664 nodejs22-bin-22.23.1-2.hum1 noarch nodejs22-devel-22.23.1-2.hum1 aarch64, x8664 nodejs22-docs-22.23.1-2.hum1 noarch...

9.8CVSS5.9AI score0.00656EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2026/07/01 6:55 p.m.9 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs24: nodejs24-24.18.0-0.2.hum1 aarch64, x8664 nodejs24-bin-24.18.0-0.2.hum1 noarch nodejs24-devel-24.18.0-0.2.hum1 aarch64, x8664 nodejs24-docs-24.18.0-0.2.hum1 noarch...

9.8CVSS5.8AI score0.00656EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2026/06/30 10:56 p.m.6 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs26: nodejs26-26.4.0-1.3.hum1 aarch64, x8664 nodejs26-bin-26.4.0-1.3.hum1 noarch nodejs26-devel-26.4.0-1.3.hum1 aarch64, x8664 nodejs26-docs-26.4.0-1.3.hum1 noarch...

9.8CVSS5.8AI score0.00656EPSS
Exploits3References12
OSV
OSV
added 2026/06/29 5:49 a.m.5 views

BIT-NODE-MIN-2026-48936

A flaw in Node.js Permission API can cause a local server to be started via a Unix domain socket, even without the --allow-net permission. This vulnerability affects one supported release line: Node.js 26...

3.3CVSS6AI score0.00154EPSS
Exploits0References2
OSV
OSV
added 2026/06/29 5:48 a.m.5 views

BIT-NODE-2026-48936

A flaw in Node.js Permission API can cause a local server to be started via a Unix domain socket, even without the --allow-net permission. This vulnerability affects one supported release line: Node.js 26...

3.3CVSS5.7AI score0.00154EPSS
Exploits0References2
OSV
OSV
added 2026/06/26 10:34 a.m.4 views

SUSE-SU-2026:2647-1 Security update for nodejs22

This update for nodejs22 fixes the following issues Update to 22.23.0: - CVE-2026-6733: undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery bsc1268479. - CVE-2026-9496: pacote: excessive CPU consumption in addGitSha when processing a...

9.8CVSS6.6AI score0.02806EPSS
Exploits3References39
EUVD
EUVD
added 2026/06/26 1:14 a.m.8 views

EUVD-2026-39606

A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERRPROXYTUNNEL error messages. When proxy credentials are embedded in the proxy URL, they may be exposed through error handling paths and captured by logs, diagnostics, or other error consumers. This vulnerability...

7.5CVSS6.6AI score0.00437EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 1:14 a.m.11 views

CVE-2026-48934

A flaw in Node.js TLS host verification can cause an attacker to bypass certification validation. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

4.3CVSS6.4AI score0.00258EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/26 1:14 a.m.10 views

CVE-2026-48933

A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt is a multiple of 2GiB. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

7.5CVSS6.6AI score0.02806EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/26 1:14 a.m.9 views

CVE-2026-48618

A flaw in Node.js TLS hostname handling can cause Node.js unicode dot separator handling can lead to tls wildcard-depth authentication bypass due to resolver and verifier hostname normalization mismat. This can lead to confidentiality impact or bypass of the intended security boundary under...

7.7CVSS6.7AI score0.00674EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/25 11:4 p.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs26: nodejs26-26.4.0-1.2.hum1 aarch64, x8664 nodejs26-bin-26.4.0-1.2.hum1 noarch nodejs26-devel-26.4.0-1.2.hum1 aarch64, x8664 nodejs26-docs-26.4.0-1.2.hum1 noarch...

7.7CVSS6.8AI score0.02806EPSS
Exploits0References5
OSV
OSV
added 2026/06/25 1:50 p.m.2 views

OPENSUSE-SU-2026:21058-1 Security update for nodejs22

This update for nodejs22 fixes the following issues Update to 22.23.0: - CVE-2026-6733: undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery bsc1268479. - CVE-2026-9496: pacote: excessive CPU consumption in addGitSha when processing a...

9.8CVSS7AI score0.26356EPSS
Exploits3References52
OSV
OSV
added 2026/06/25 1:34 p.m.2 views

SUSE-SU-2026:2633-1 Security update for nodejs24

This update for nodejs24 fixes the following issues Update to 24.17.0: - CVE-2026-2581: undici: Undici: Denial of Service due to uncontrolled resource consumption bsc1268480. - CVE-2026-6733: undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response...

9.8CVSS6AI score0.02806EPSS
Exploits3References43
RedHat Linux
RedHat Linux
added 2026/06/24 3:33 a.m.8 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: nodejs22: nodejs22-22.23.1-1.hum1 aarch64, x8664 nodejs22-bin-22.23.1-1.hum1 noarch nodejs22-devel-22.23.1-1.hum1 aarch64, x8664 nodejs22-docs-22.23.1-1.hum1 noarch...

7.7CVSS6.8AI score0.02806EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/22 6:59 p.m.4 views

CVE-2026-48931

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS5.9AI score0.00371EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder