Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-23920

Опубликовано: 23 фев. 2023
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 4.2

Описание

An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

not-affected

18.19.1+dfsg-2ubuntu4
esm-apps/bionic

not-affected

code not present
esm-apps/focal

released

10.19.0~dfsg-3ubuntu1.5
esm-apps/jammy

released

12.22.9~dfsg-1ubuntu3.4
esm-apps/noble

not-affected

18.19.1+dfsg-2ubuntu4
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

not-affected

code not present
focal

released

10.19.0~dfsg-3ubuntu1.5
jammy

released

12.22.9~dfsg-1ubuntu3.4

Показывать по

Ссылки на источники

EPSS

Процентиль: 26%
0.00088
Низкий

4.2 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-23920

CVSS3: 4.2
redhat
больше 2 лет назад

An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.

nvd логотип

CVE-2023-23920

CVSS3: 4.2
nvd
больше 2 лет назад

An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.

msrc логотип

CVE-2023-23920

CVSS3: 4.2
msrc
больше 2 лет назад

Описание отсутствует

debian логотип

CVE-2023-23920

CVSS3: 4.2
debian
больше 2 лет назад

An untrusted search path vulnerability exists in Node.js. <19.6.1, <18 ...

suse-cvrf логотип

SUSE-SU-2023:0682-1

suse-cvrf
больше 2 лет назад

Security update for nodejs12

EPSS

Процентиль: 26%
0.00088
Низкий

4.2 Medium

CVSS3