Количество 23
Количество 23
CVE-2023-46809
Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key.
CVE-2023-46809
Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key.
CVE-2023-46809
Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key.
CVE-2023-46809
Node.js versions which bundle an unpatched version of OpenSSL or run a ...
GHSA-xfgw-qcmv-354j
Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key.
BDU:2024-02819
Уязвимость функции PrivateDecrypt() криптографической библиотеки программной платформы Node.js, позволяющая нарушителю реализовать атаку Блейхенбахера (Bleichenbacher) или атаку Марвина (Marvin)
ROS-20240916-04
Уязвимость nodejs
RLSA-2024:1510
Important: nodejs:18 security update
RLSA-2024:1503
Important: nodejs:18 security update
ELSA-2024-1510
ELSA-2024-1510: nodejs:18 security update (IMPORTANT)
ELSA-2024-1503
ELSA-2024-1503: nodejs:18 security update (IMPORTANT)
SUSE-SU-2024:0733-1
Security update for nodejs12
SUSE-SU-2024:0732-1
Security update for nodejs14
SUSE-SU-2024:0731-1
Security update for nodejs16
SUSE-SU-2024:0729-1
Security update for nodejs16
SUSE-SU-2024:0728-1
Security update for nodejs16
SUSE-SU-2024:0730-1
Security update for nodejs18
SUSE-SU-2024:0644-1
Security update for nodejs18
RLSA-2024:1688
Important: nodejs:20 security update
RLSA-2024:1687
Important: nodejs:20 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-46809 Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key. | CVSS3: 7.4 | 1% Низкий | больше 1 года назад |
 | CVE-2023-46809 Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key. | CVSS3: 5.9 | 1% Низкий | почти 2 года назад |
 | CVE-2023-46809 Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key. | CVSS3: 7.4 | 1% Низкий | больше 1 года назад |
| CVE-2023-46809 Node.js versions which bundle an unpatched version of OpenSSL or run a ... | CVSS3: 7.4 | 1% Низкий | больше 1 года назад |
| GHSA-xfgw-qcmv-354j Node.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked version of OpenSSL which are unpatched are vulnerable to the Marvin Attack - https://people.redhat.com/~hkario/marvin/, if PCKS #1 v1.5 padding is allowed when performing RSA descryption using a private key. | CVSS3: 7.4 | 1% Низкий | больше 1 года назад |
 | BDU:2024-02819 Уязвимость функции PrivateDecrypt() криптографической библиотеки программной платформы Node.js, позволяющая нарушителю реализовать атаку Блейхенбахера (Bleichenbacher) или атаку Марвина (Marvin) | CVSS3: 5.9 | 1% Низкий | почти 2 года назад |
 | ROS-20240916-04 Уязвимость nodejs | CVSS3: 5.9 | 1% Низкий | около 1 года назад |
 | RLSA-2024:1510 Important: nodejs:18 security update | больше 1 года назад | ||
| RLSA-2024:1503 Important: nodejs:18 security update | больше 1 года назад | ||
| ELSA-2024-1510 ELSA-2024-1510: nodejs:18 security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2024-1503 ELSA-2024-1503: nodejs:18 security update (IMPORTANT) | больше 1 года назад | ||
 | SUSE-SU-2024:0733-1 Security update for nodejs12 | почти 2 года назад | ||
| SUSE-SU-2024:0732-1 Security update for nodejs14 | почти 2 года назад | ||
| SUSE-SU-2024:0731-1 Security update for nodejs16 | почти 2 года назад | ||
| SUSE-SU-2024:0729-1 Security update for nodejs16 | почти 2 года назад | ||
| SUSE-SU-2024:0728-1 Security update for nodejs16 | почти 2 года назад | ||
| SUSE-SU-2024:0730-1 Security update for nodejs18 | почти 2 года назад | ||
| SUSE-SU-2024:0644-1 Security update for nodejs18 | почти 2 года назад | ||
| RLSA-2024:1688 Important: nodejs:20 security update | больше 1 года назад | ||
| RLSA-2024:1687 Important: nodejs:20 security update | больше 1 года назад |
Уязвимостей на страницу