CVE-2021-22930

Опубликовано: 16 дек. 2021

Источник: msrc

CVSS3: 9.8

EPSS Низкий

Описание

Node.js before 16.6.0 14.17.4 and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption to change process behavior.

EPSS

Процентиль: 57%

0.00347

Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2021-22930

CVSS3: 9.8

ubuntu

около 4 лет назад

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.

CVE-2021-22930

CVSS3: 9.8

redhat

больше 4 лет назад

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.

CVE-2021-22930

CVSS3: 9.8

nvd

около 4 лет назад

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.

CVE-2021-22930

CVSS3: 9.8

debian

около 4 лет назад

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use aft ...

openSUSE-SU-2021:3294-1

suse-cvrf

около 4 лет назад

Security update for nodejs8

EPSS

Процентиль: 57%

0.00347

Низкий

9.8 Critical

CVSS3