4323 matches found
MAL-2025-34547 Malicious code in taphonomy-graphql-nodejs-isostasy (npm)
The package taphonomy-graphql-nodejs-isostasy was found to contain malicious code...
MAL-2025-17485 Malicious code in confluent-examples-nodejs (npm)
The package confluent-examples-nodejs was found to contain malicious code...
MAL-2025-8910 Malicious code in @malware-test-serve-mutch-uncut-mothy/test-mlw3-serve-mutch-uncut-mothy (npm)
The package @malware-test-serve-mutch-uncut-mothy/test-mlw3-serve-mutch-uncut-mothy was found to contain malicious code...
ROOT-OS-DEBIAN-12-CVE-2024-22025 CVE-2024-22025 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-22025 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-22019 CVE-2024-22019 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-22019 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-23083 CVE-2025-23083 in rootio-nodejs - Patched by Root
Root has patched CVE-2025-23083 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2023-46809 CVE-2023-46809 in rootio-nodejs - Patched by Root
Root has patched CVE-2023-46809 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-22020 CVE-2024-22020 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-22020 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-21892 CVE-2024-21892 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-21892 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-23085 CVE-2025-23085 in rootio-nodejs - Patched by Root
Root has patched CVE-2025-23085 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-23165 CVE-2025-23165 in rootio-nodejs - Patched by Root
Root has patched CVE-2025-23165 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-27983 CVE-2024-27983 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-27983 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2024-27982 CVE-2024-27982 in rootio-nodejs - Patched by Root
Root has patched CVE-2024-27982 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-23166 CVE-2025-23166 in rootio-nodejs - Patched by Root
Root has patched CVE-2025-23166 in the rootio-nodejs package for Root:Debian:12. Multiple fixed versions available...
PT-2025-32688 · Unknown +1 · Content-Security-Policy-Parser +1
Name of the Vulnerable Software and Affected Versions: content-security-policy-parser versions 0.5.0 and earlier Description: The content-security-policy-parser software parses content security policy directives. A prototype pollution vulnerability exists in versions 0.5.0 and earlier, where...
MAL-2025-6805 Malicious code in nodejs-with-singlestore-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2dfae81e2129cf717fbae5a22ecd1938d1ea741de0968e42d5363363d6ea2dfe The OpenSSF Package Analysis project identified 'nodejs-with-singlestore-demo' @ 1002.0.1 npm as malicious. It is considered malicious because: ...
Malicious code in nodejs-with-singlestore-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2dfae81e2129cf717fbae5a22ecd1938d1ea741de0968e42d5363363d6ea2dfe The OpenSSF Package Analysis project identified 'nodejs-with-singlestore-demo' @ 1002.0.1 npm as malicious. It is considered malicious because: ...
Medium: nodejs
Issue Overview: A vulnerability was found in juliangruber brace-expansion up to 1.1.11/2.0.1/3.0.0/4.0.0. It has been rated as problematic. Affected by this issue is the function expand of the file index.js. The manipulation leads to inefficient regular expression complexity. The attack may be...
[R1] Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability
R1 Tenable Identity Exposure Versions 3.93.2 and 3.77.13 Fix One Vulnerability Arnie Cabral Wed, 08/06/2025 - 10:48 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components nodeJS was found to contain vulnerabilities, and...
Tenable Identity Exposure < 3.77.13(LTS) / 3.93.2 Vulnerable Nodejs (TNS-2025-16)
The version of Tenable Identity Exposure formerly Tenable.ad installed on the remote host is prior to 3.77.13LTS or 3.93.2. It therefore contains a version of Nodejs that could be vulnerable. Tenable has upgrade these components to address the potential impact of the issues. Note that Nessus has...