Lucene search
K

4 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in node-moment

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability affects users of Moment.js on npm server versions between 1.0.1 and 2.29.1, especially if a user-provided locale string is directly used to switch the moment locale...

7.5CVSS6.5AI score0.05664EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/11/20 12:56 a.m.3 views

SUSE CVE-2022-24785

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability impacts npm server users of Moment.js between versions 1.0.1 and 2.29.1, especially if a user-provided locale string is directly used to switch moment locale. This...

7.5CVSS8.8AI score0.05664EPSS
Exploits0References3
OSV
OSV
added 2022/04/04 9:25 p.m.3 views

GHSA-8HFJ-J24R-96C4 Path Traversal: 'dir/../../filename' in moment.locale

Impact This vulnerability impacts npm server users of moment.js, especially if user provided locale string, eg fr is directly used to switch moment locale. Patches This problem is patched in 2.29.2, and the patch can be applied to all affected versions from 1.0.1 up until 2.29.1, inclusive...

7.5CVSS6.8AI score0.05664EPSS
Exploits0References12
OSV
OSV
added 2022/04/04 5:15 p.m.3 views

UBUNTU-CVE-2022-24785

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability impacts npm server users of Moment.js between versions 1.0.1 and 2.29.1, especially if a user-provided locale string is directly used to switch moment locale. This...

7.5CVSS6.8AI score0.05664EPSS
Exploits0References4
Rows per page
Query Builder