Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-36137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is used. Node.js Permission...

3.3CVSS6.1AI score0.00395EPSS
Exploits0References2
OSV
OSV
added 2024/09/07 4:15 p.m.6 views

ALPINE-CVE-2024-36137

A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is used. Node.js Permission Model do not operate on file descriptors, however, operations such as fs.fchown or fs.fchmod can use a "read-only" file descriptor to...

3.3CVSS6.8AI score0.00395EPSS
Exploits0References1
OSV
OSV
added 2024/09/07 4:15 p.m.4 views

UBUNTU-CVE-2024-36137

A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is used. Node.js Permission Model do not operate on file descriptors, however, operations such as fs.fchown or fs.fchmod can use a "read-only" file descriptor to...

3.3CVSS6.4AI score0.00395EPSS
Exploits0References4
Snyk
Snyk
added 2024/07/09 9:47 a.m.1 views

Authorization Bypass

Overview Affected versions of this package are vulnerable to Authorization Bypass via fs.fchown or fs.fchmod operations which can use a "read-only" file descriptor to change the owner and permissions of a file. Note: This is only exploitable for users using the experimental permission when the...

4.2CVSS6.9AI score0.00395EPSS
Exploits0References2
Rows per page
Query Builder