CVE-2022-43548

Опубликовано: 04 нояб. 2022

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

A OS Command Injection vulnerability exists in Node.js versions <14.21.1, <16.18.1, <18.12.1, <19.0.1 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests allowing rebinding attacks.The fix for this issue in https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32212 was incomplete and this new CVE is to complete the fix.

A flaw was found in NodeJS. The issue occurs in the Node.js rebinding protector for --inspect that still allows invalid IP addresses, specifically, the octal format. This flaw allows an attacker to perform DNS rebinding and execute arbitrary code.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-350

https://bugzilla.redhat.com/show_bug.cgi?id=2140911nodejs: DNS rebinding in inspect via invalid octal IP address

EPSS

Процентиль: 71%

0.00702

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-43548

CVSS3: 8.1

ubuntu

около 3 лет назад

CVE-2022-43548

CVSS3: 8.1

nvd

около 3 лет назад

CVE-2022-43548

CVSS3: 8.1

msrc

около 3 лет назад

A OS Command Injection vulnerability exists in Node.js versions <14.21.1 <16.18.1 <18.12.1 <19.0.1 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests allowing rebinding attacks.The fix for this issue in https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32212 was incomplete and this new CVE is to complete the fix.

CVE-2022-43548

CVSS3: 8.1

debian

около 3 лет назад

A OS Command Injection vulnerability exists in Node.js versions <14.21 ...

SUSE-SU-2022:4301-1

suse-cvrf

около 3 лет назад

Security update for nodejs10

EPSS

Процентиль: 71%

0.00702

Низкий

7.5 High

CVSS3