102 matches found
GHSA-P2WW-P57H-W5M7 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-F27J-4F6G-JP27 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-F27J-4F6G-JP27 vulnerabilities
Vulnerabilities for packages: nodejs...
RockyLinux 8 : nodejs:16 (RLSA-2023:5360)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:5360 advisory. nodejs: Permissions policies can be bypassed via Module.load CVE-2023-32002 nodejs-semver: Regular expression denial of service CVE-2022-25883 nodejs:...
RockyLinux 8 : nodejs:18 (RLSA-2023:5869)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:5869 advisory. HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A Rocky Enterprise Software Foundation...
CVE-2025-23165 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-GCF6-VGCR-474F vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-RRJV-57MM-J6CM vulnerabilities
Vulnerabilities for packages: nodejs...
[R1] Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability
R1 Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability Arnie Cabral Wed, 08/06/2025 - 10:48 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components nodeJS was found to contain vulnerabilities, and...
Security Bulletin: IBM Maximo Application Suite uses multiple nodejs and go packages which is vulnerable to " CVE-2025-27152, CVE-2025-32996, CVE-2025-32997, CVE-2025-22871"
Summary IBM Maximo Application Suite uses " axios, http-proxy-middleware and net/http package " which is vulnerable to "CVE-2025-27152, CVE-2025-32996, CVE-2025-32997, CVE-2025-22871". This bulletin contains information regarding the vulnerability and how to address it. Vulnerability Details...
RockyLinux 8 : nodejs:22 (RLSA-2025:8506)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8506 advisory. nodejs: Remote Crash via SignTraits::DeriveBits in Node.js CVE-2025-23166 Tenable has extracted the preceding description block directly from the...
RockyLinux 9 : nodejs:20 (RLSA-2025:8468)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8468 advisory. nodejs: Remote Crash via SignTraits::DeriveBits in Node.js CVE-2025-23166 Tenable has extracted the preceding description block directly from the...
RockyLinux 8 : nodejs:20 (RLSA-2025:8514)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8514 advisory. nodejs: Remote Crash via SignTraits::DeriveBits in Node.js CVE-2025-23166 Tenable has extracted the preceding description block directly from the...
CVE-2025-23166 affecting package nodejs for versions less than 20.14.0-9
CVE-2025-23166 affecting package nodejs for versions less than 20.14.0-9. A patched version of the package is available...
Mageia: Security Advisory (MGASA-2025-0161)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GHSA-7975-2QR9-G542 vulnerabilities
Vulnerabilities for packages: nodejs...
Photon OS 4.0: Nodejs PHSA-2025-4.0-0801
An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0801. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Alibaba Cloud Linux 3 : 0014: nodejs:14 (ALINUX3-SA-2022:0014)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0014 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-28469: This affects the package...
Alibaba Cloud Linux 3 : 0165: nodejs:14 (ALINUX3-SA-2022:0165)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0165 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-32212: A OS Command Injection...
CVE-2025-23089 vulnerabilities
Vulnerabilities for packages: nodejs...