Количество 20
Количество 20
GHSA-rrjv-57mm-j6cm
The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.
CVE-2025-23166
The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.
CVE-2025-23166
The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.
CVE-2025-23166
The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.
CVE-2025-23166
CVE-2025-23166
The C++ method SignTraits::DeriveBits() may incorrectly call ThrowExce ...
ELSA-2025-8514
ELSA-2025-8514: nodejs:20 security update (IMPORTANT)
ELSA-2025-8506
ELSA-2025-8506: nodejs:22 security update (IMPORTANT)
ELSA-2025-8468
ELSA-2025-8468: nodejs:20 security update (IMPORTANT)
ELSA-2025-8467
ELSA-2025-8467: nodejs:22 security update (IMPORTANT)
BDU:2025-10620
Уязвимость функции ThrowException() модели разрешений программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:01879-1
Security update for nodejs22
SUSE-SU-2025:01878-1
Security update for nodejs22
RLSA-2025:8493
Important: nodejs22 security update
ELSA-2025-8493
ELSA-2025-8493: nodejs22 security update (IMPORTANT)
SUSE-SU-2025:02045-1
Security update for nodejs20
SUSE-SU-2025:02039-1
Security update for nodejs20
ROS-20251006-11
Множественные уязвимости libuv
ROS-20251006-10
Множественные уязвимости nodejs20
ROS-20251006-09
Множественные уязвимости nodejs
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-rrjv-57mm-j6cm The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-23166 The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-23166 The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | CVE-2025-23166 The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime. | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | CVSS3: 7.5 | 0% Низкий | 4 месяца назад | |
| CVE-2025-23166 The C++ method SignTraits::DeriveBits() may incorrectly call ThrowExce ... | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
| ELSA-2025-8514 ELSA-2025-8514: nodejs:20 security update (IMPORTANT) | 5 месяцев назад | ||
| ELSA-2025-8506 ELSA-2025-8506: nodejs:22 security update (IMPORTANT) | 5 месяцев назад | ||
| ELSA-2025-8468 ELSA-2025-8468: nodejs:20 security update (IMPORTANT) | 5 месяцев назад | ||
| ELSA-2025-8467 ELSA-2025-8467: nodejs:22 security update (IMPORTANT) | 5 месяцев назад | ||
 | BDU:2025-10620 Уязвимость функции ThrowException() модели разрешений программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 6 месяцев назад |
 | SUSE-SU-2025:01879-1 Security update for nodejs22 | 5 месяцев назад | ||
| SUSE-SU-2025:01878-1 Security update for nodejs22 | 5 месяцев назад | ||
 | RLSA-2025:8493 Important: nodejs22 security update | около 1 месяца назад | ||
| ELSA-2025-8493 ELSA-2025-8493: nodejs22 security update (IMPORTANT) | 4 месяца назад | ||
| SUSE-SU-2025:02045-1 Security update for nodejs20 | 5 месяцев назад | ||
| SUSE-SU-2025:02039-1 Security update for nodejs20 | 5 месяцев назад | ||
 | ROS-20251006-11 Множественные уязвимости libuv | CVSS3: 7.5 | 29 дней назад | |
| ROS-20251006-10 Множественные уязвимости nodejs20 | CVSS3: 7.5 | 29 дней назад | |
| ROS-20251006-09 Множественные уязвимости nodejs | CVSS3: 7.5 | 29 дней назад |
Уязвимостей на страницу