Количество 16
Количество 16
BDU:2024-06867
Уязвимость программной платформы Node.js, связанная с неправильным контролем доступа, позволяющая нарушителю выполнить произвольный код
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
CVE-2024-22020
CVE-2024-22020
A security flaw in Node.js allows a bypass of network import restrict ...
ROS-20240904-05
Уязвимость nodejs
GHSA-ch4x-f5c4-36gv
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers.
ELSA-2024-6148
ELSA-2024-6148: nodejs:18 security update (MODERATE)
ELSA-2024-6147
ELSA-2024-6147: nodejs:18 security update (MODERATE)
SUSE-SU-2024:2542-1
Security update for nodejs18
SUSE-SU-2024:2496-1
Security update for nodejs18
ELSA-2024-5815
ELSA-2024-5815: nodejs:20 security update (MODERATE)
ELSA-2024-5814
ELSA-2024-5814: nodejs:20 security update (MODERATE)
SUSE-SU-2024:2574-1
Security update for nodejs20
SUSE-SU-2024:2543-1
Security update for nodejs20
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-06867 Уязвимость программной платформы Node.js, связанная с неправильным контролем доступа, позволяющая нарушителю выполнить произвольный код | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
 | CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
 | CVSS3: 6.5 | 0% Низкий | 9 месяцев назад | |
| CVE-2024-22020 A security flaw in Node.js allows a bypass of network import restrict ... | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
 | ROS-20240904-05 Уязвимость nodejs | CVSS3: 6.5 | 0% Низкий | около 1 года назад |
| GHSA-ch4x-f5c4-36gv A security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network imports in data URLs, an attacker can execute arbitrary code, compromising system security. Verified on various platforms, the vulnerability is mitigated by forbidding data URLs in network imports. Exploiting this flaw can violate network import security, posing a risk to developers and servers. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| ELSA-2024-6148 ELSA-2024-6148: nodejs:18 security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-6147 ELSA-2024-6147: nodejs:18 security update (MODERATE) | около 1 года назад | ||
 | SUSE-SU-2024:2542-1 Security update for nodejs18 | больше 1 года назад | ||
| SUSE-SU-2024:2496-1 Security update for nodejs18 | больше 1 года назад | ||
| ELSA-2024-5815 ELSA-2024-5815: nodejs:20 security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-5814 ELSA-2024-5814: nodejs:20 security update (MODERATE) | около 1 года назад | ||
| SUSE-SU-2024:2574-1 Security update for nodejs20 | больше 1 года назад | ||
| SUSE-SU-2024:2543-1 Security update for nodejs20 | больше 1 года назад |
Уязвимостей на страницу