CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/02/17 12:0 a.m.•2 views

MiracleLinux 8 : nodejs:20 (AXSA:2026-187:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-187:01 advisory. nodejs: Nodejs filesystem permissions bypass CVE-2025-55132 nodejs: Nodejs denial of service CVE-2026-21637 nodejs: Nodejs denial of service...

Tenable Nessus•added 2026/02/17 12:0 a.m.•3 views

Oracle Linux 9 : nodejs:24 (ELSA-2026-2781)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2781 advisory. nodejs 1:24.13.0-1 - Update to version 24.13.0 nodejs-nodemon 3.0.3-3 - Keep BR on just npm 3.0.3-2 - Fix BR for nodejs-npm nodejs-packaging 2021.06-6 ...

AlmaLinux•added 2026/02/17 12:0 a.m.•5 views

Important: nodejs:24 security update

9.1CVSS5.6AI score0.00109EPSS

Tenable Nessus•added 2026/02/17 12:0 a.m.•2 views

MiracleLinux 8 : nodejs:22 (AXSA:2026-188:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-188:01 advisory. nodejs: Nodejs filesystem permissions bypass CVE-2025-55132 nodejs: Nodejs denial of service CVE-2026-21637 nodejs: Nodejs denial of service...

AlmaLinux•added 2026/02/17 12:0 a.m.•4 views

Important: nodejs:22 security update

9.1CVSS5.6AI score0.00109EPSS

Tenable Nessus•added 2026/02/17 12:0 a.m.•3 views

RHEL 9 : nodejs:20 (RHSA-2026:2768)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2768 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language...

9.1CVSS5.7AI score0.00109EPSS

Tenable Nessus•added 2026/02/17 12:0 a.m.•3 views

RHEL 9 : nodejs:24 (RHSA-2026:2781)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2781 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language...

Hacker One•added 2026/02/15 10:15 p.m.•7 views

Node.js: Incomplete fix for CVE-2026-21637: loadSNI() in _tls_wrap.js lacks try/catch leading to Remote DoS

A flaw was discovered in the Node.js TLS error handling that left SNICallback invocations unprotected against synchronous exceptions. This represented an incomplete fix of the prior CVE-2026-21637 vulnerability, where the equivalent ALPN and PSK callbacks were already addressed. The issue could...

7.5CVSS5.8AI score0.00056EPSS

Exploits0

OSV•added 2026/02/15 9:26 a.m.•2 views

OPENSUSE-SU-2026:20236-1 Security update for nodejs22

This update for nodejs22 fixes the following issues: Update to 22.22.0: - CVE-2025-55130: file system permissions bypass via crafted symlinks bsc1256569. - CVE-2025-55131: timeout-based race conditions allow for allocations that contain leftover data from previous operations and lead to exposure ...

9.1CVSS7.1AI score0.00109EPSS

Tenable Nessus•added 2026/02/14 12:0 a.m.•5 views

Fedora 43 : linux-sgx (2026-a84e0ad039)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a84e0ad039 advisory. Update nodejs modules used by pccs daemon for CVE-2026-23745, CVE-2026-23950, CVE-2026-24842, CVE-2025-13465, CVE-2025-15284. Remove Fedora override...

8.8CVSS6.3AI score0.0004EPSS

Exploits5References6

Tenable Nessus•added 2026/02/13 12:0 a.m.•2 views

AlmaLinux 8 : nodejs:22 (ALSA-2026:2421)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:2421 advisory. nodejs: Nodejs filesystem permissions bypass CVE-2025-55132 nodejs: Nodejs denial of service CVE-2026-21637 nodejs: Nodejs denial of service CVE-2025-5946...

Tenable Nessus•added 2026/02/13 12:0 a.m.•3 views

Oracle Linux 8 : nodejs:22 (ELSA-2026-2421)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2421 advisory. nodejs 1:22.22.0-1 - Update to 22.22.0 Resolves: RHEL-118152 nodejs-nodemon 3.0.1-1 - Exclude ix86 arches from building. Related: RHEL-35991...

Tenable Nessus•added 2026/02/13 12:0 a.m.•2 views

AlmaLinux 8 : nodejs:24 (ALSA-2026:2420)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:2420 advisory. nodejs: Nodejs filesystem permissions bypass CVE-2025-55132 nodejs: Nodejs denial of service CVE-2026-21637 nodejs: Nodejs denial of service CVE-2025-5946...

Tenable Nessus•added 2026/02/13 12:0 a.m.•3 views

SUSE SLES15 Security Update : nodejs20 (SUSE-SU-2026:0457-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0457-1 advisory. - Update to 20.20.0: - CVE-2026-22036: Updated undici to 6.23.0 bsc1256848 - CVE-2025-59465: Add TLSSocket default error handler...

9.1CVSS7AI score0.00109EPSS

Exploits2References22

Tenable Nessus•added 2026/02/13 12:0 a.m.•3 views

AlmaLinux 8 : nodejs:20 (ALSA-2026:2422)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:2422 advisory. nodejs: Nodejs filesystem permissions bypass CVE-2025-55132 nodejs: Nodejs denial of service CVE-2026-21637 nodejs: Nodejs denial of service CVE-2025-5946...