Описание
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-8174
- https://hackerone.com/reports/784186
- https://security.gentoo.org/glsa/202101-07
- https://security.netapp.com/advisory/ntap-20201023-0003
- https://www.oracle.com//security-alerts/cpujul2021.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujan2021.html
- https://www.oracle.com/security-alerts/cpuoct2020.html
Связанные уязвимости
CVSS3: 8.1
ubuntu
почти 5 лет назад
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
CVSS3: 8.1
redhat
около 5 лет назад
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
CVSS3: 8.1
nvd
почти 5 лет назад
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
CVSS3: 8.1
debian
почти 5 лет назад
napi_get_value_string_*() allows various kinds of memory corruption in ...