Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

SUSE CVE-2020-8201

🗓️ 15 Feb 2023 04:01:25Reported by Suse CVEType 
susecve
 susecve🔗 www.suse.com👁 1 Views

SUSE CVE-2020-8201: Node.js <12.18.4 and <14.11 enable HTTP desyncs from a header carriage-return bug to hijack sessions.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Node.js upgrade for IBM Cloud Pak for Data Streams Flows
30 Nov 202016:40
ibm
IBM Security Bulletins		Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities
15 Jan 202114:41
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Node.js affect IBM Spectrum Control (CVE-2020-8201, CVE-2020-8252)
5 Nov 202009:09
ibm
IBM Security Bulletins		Security Bulletin: Netcool Operations Insight - Cloud Native Event Analytics is affected by an Apache Commons Codec vulnerability
15 Dec 202017:43
ibm
IBM Security Bulletins		Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Pak for Multicloud Management Managed Service and Infrastructure Management
15 Dec 202017:52
ibm
IBM Security Bulletins		Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js
9 Dec 202004:41
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in jQuery, Spring, Dom4j, MongoDB, Linux Kernel, Targetcli-fb, Jackson, Node.js, and Apache Commons affect IBM Spectrum Protect Plus
20 Nov 202020:41
ibm
IBM Security Bulletins		Security Bulletin: IBM Cloud Transformation Advisor is affected by multiple Node.js vulnerabilities.
14 Dec 202015:16
ibm
IBM Security Bulletins		Security Bulletin: Potential vulnerability with Node.js
9 Dec 202016:31
ibm
IBM Security Bulletins		Security Bulletin: IBM Cloud Private is vulnerable to Node.js vulnerabilities (CVE-2020-8201, CVE-2020-8252, CVE-2020-8251)
26 Feb 202115:33
ibm
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
SUSE Linux Enterprise Server12anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server12.3anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server12.4anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server12.5anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications12anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications12.3anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications12.4anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications12.5anynodejs1212.18.4-1.20.1nodejs12-12.18.4-1.20.1.noarch.rpm
SUSE Linux Enterprise Server15.2anynodejs1212.18.4-4.6.1nodejs12-12.18.4-4.6.1.noarch.rpm
SUSE Linux Enterprise Server15.3anynodejs1212.18.4-4.6.1nodejs12-12.18.4-4.6.1.noarch.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Dec 2025 02:04Current
6.9Medium risk
Vulners AI Score6.9
CVSS 3.15.6
EPSS0.00632
SUSECVE 2020 8201Node.jsHTTP desyncCarriage returnHeader namesSession hijackCookie poisoningClickjacking
1