Количество 16
Количество 16
BDU:2024-06867
Уязвимость программной платформы Node.js, связанная с неправильным контролем доступа, позволяющая нарушителю выполнить произвольный код
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrict ...
ROS-20240904-05
Уязвимость nodejs
GHSA-ch4x-f5c4-36gv
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
ELSA-2024-6148
ELSA-2024-6148: nodejs:18 security update (MODERATE)
ELSA-2024-6147
ELSA-2024-6147: nodejs:18 security update (MODERATE)
SUSE-SU-2024:2542-1
Security update for nodejs18
SUSE-SU-2024:2496-1
Security update for nodejs18
ELSA-2024-5815
ELSA-2024-5815: nodejs:20 security update (MODERATE)
ELSA-2024-5814
ELSA-2024-5814: nodejs:20 security update (MODERATE)
SUSE-SU-2024:2574-1
Security update for nodejs20
SUSE-SU-2024:2543-1
Security update for nodejs20
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-06867 Уязвимость программной платформы Node.js, связанная с неправильным контролем доступа, позволяющая нарушителю выполнить произвольный код | CVSS3: 6.5 | 0% Низкий | 12 месяцев назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | 11 месяцев назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | 12 месяцев назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | 11 месяцев назад |
 | CVSS3: 6.5 | 0% Низкий | 4 месяца назад | |
| CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrict ... | CVSS3: 6.5 | 0% Низкий | 11 месяцев назад |
 | ROS-20240904-05 Уязвимость nodejs | CVSS3: 6.5 | 0% Низкий | 10 месяцев назад |
| GHSA-ch4x-f5c4-36gv A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | 11 месяцев назад |
| ELSA-2024-6148 ELSA-2024-6148: nodejs:18 security update (MODERATE) | 10 месяцев назад | ||
| ELSA-2024-6147 ELSA-2024-6147: nodejs:18 security update (MODERATE) | 10 месяцев назад | ||
 | SUSE-SU-2024:2542-1 Security update for nodejs18 | 11 месяцев назад | ||
| SUSE-SU-2024:2496-1 Security update for nodejs18 | 11 месяцев назад | ||
| ELSA-2024-5815 ELSA-2024-5815: nodejs:20 security update (MODERATE) | 10 месяцев назад | ||
| ELSA-2024-5814 ELSA-2024-5814: nodejs:20 security update (MODERATE) | 10 месяцев назад | ||
| SUSE-SU-2024:2574-1 Security update for nodejs20 | 11 месяцев назад | ||
| SUSE-SU-2024:2543-1 Security update for nodejs20 | 11 месяцев назад |
Уязвимостей на страницу