Количество 23
Количество 23
GHSA-7r9p-c88x-w357
Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library.
CVE-2021-22931
Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library.
CVE-2021-22931
Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library.
CVE-2021-22931
Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library.
CVE-2021-22931
CVE-2021-22931
Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Co ...
BDU:2022-01892
Уязвимость библиотеки dns программной платформы Node.js, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
RLSA-2021:3666
Important: nodejs:14 security and bug fix update
openSUSE-SU-2021:2953-1
Security update for nodejs10
openSUSE-SU-2021:1239-1
Security update for nodejs10
SUSE-SU-2021:2953-1
Security update for nodejs10
SUSE-SU-2021:2823-1
Security update for nodejs10
openSUSE-SU-2021:3211-1
Security update for nodejs14
openSUSE-SU-2021:2875-1
Security update for nodejs12
openSUSE-SU-2021:1313-1
Security update for nodejs14
openSUSE-SU-2021:1214-1
Security update for nodejs12
SUSE-SU-2021:3211-1
Security update for nodejs14
SUSE-SU-2021:3184-1
Security update for nodejs14
SUSE-SU-2021:2875-1
Security update for nodejs12
SUSE-SU-2021:2824-1
Security update for nodejs12
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-7r9p-c88x-w357 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-22931 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
 | CVE-2021-22931 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. | CVSS3: 5 | 1% Низкий | около 4 лет назад |
 | CVE-2021-22931 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
 | CVSS3: 9.8 | 1% Низкий | около 4 лет назад | |
| CVE-2021-22931 Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Co ... | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
 | BDU:2022-01892 Уязвимость библиотеки dns программной платформы Node.js, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
 | RLSA-2021:3666 Important: nodejs:14 security and bug fix update | около 4 лет назад | ||
 | openSUSE-SU-2021:2953-1 Security update for nodejs10 | около 4 лет назад | ||
| openSUSE-SU-2021:1239-1 Security update for nodejs10 | около 4 лет назад | ||
| SUSE-SU-2021:2953-1 Security update for nodejs10 | около 4 лет назад | ||
| SUSE-SU-2021:2823-1 Security update for nodejs10 | около 4 лет назад | ||
| openSUSE-SU-2021:3211-1 Security update for nodejs14 | около 4 лет назад | ||
| openSUSE-SU-2021:2875-1 Security update for nodejs12 | около 4 лет назад | ||
| openSUSE-SU-2021:1313-1 Security update for nodejs14 | около 4 лет назад | ||
| openSUSE-SU-2021:1214-1 Security update for nodejs12 | около 4 лет назад | ||
| SUSE-SU-2021:3211-1 Security update for nodejs14 | около 4 лет назад | ||
| SUSE-SU-2021:3184-1 Security update for nodejs14 | около 4 лет назад | ||
| SUSE-SU-2021:2875-1 Security update for nodejs12 | около 4 лет назад | ||
| SUSE-SU-2021:2824-1 Security update for nodejs12 | около 4 лет назад |
Уязвимостей на страницу