Filter

Software

node.js
53

Node.jsNode.js security updates: CVE-2025-23083, CVE-2025-23084, CVE-2025-23085

medium
5.3
First published (updated )
CVE-2025-23085

Node.jsNode.js security updates: CVE-2025-23083, CVE-2025-23084, CVE-2025-23085

high
7.7
EPSS
0.04%
First published (updated )
CVE-2025-23083

Node.jsNode.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

high
8.8
EPSS
0.04%
First published (updated )
CVE-2025-23087

Node.jsNode.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

high
8.8
EPSS
0.04%
First published (updated )
CVE-2025-23089

Node.jsNode.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

high
8.8
EPSS
0.04%
First published (updated )
CVE-2025-23088

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Node.jsNode.js security updates: CVE-2025-23083, CVE-2025-23084, CVE-2025-23085

medium
5.6
EPSS
0.04%
First published (updated )
CVE-2025-23084

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/87

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/85

body-parserbody-parser is Node.js body parsing middleware. body-parser <1.20.3 is vulnerable to denial of se…

high
7
First published (updated )
REDHAT-BUG-2311171

indutny node-ipSSRF

high
7
First published (updated )
REDHAT-BUG-2284554

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/80

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/74

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/73

Node.js EOL CVEs: CVE-2025-23087, CVE-2025-23088, CVE-2025-23089

First published (updated )
https://seclists.org/oss-sec/2025/q1/69

npm/undiciUndici Uses Insufficiently Random Values

medium
6.8
EPSS
0.04%
First published (updated )
CVE-2025-22150

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Node.jsWith the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker threa…

high
7.7
EPSS
0.04%
First published (updated )
CVE-2025-23090

Fwd: Node.js security updates for all active lease lines, January 2025

First published (updated )
https://seclists.org/oss-sec/2025/q1/40

Node.js security updates: CVE-2025-23083, CVE-2025-23084, CVE-2025-23085

First published (updated )
https://seclists.org/oss-sec/2025/q1/39

indutny Elliptic Node.jsThe verify function in lib/elliptic/eddsa/index.js in the Elliptic package before 6.5.6 for Node.js …

high
7
First published (updated )
REDHAT-BUG-2317724

indutny Elliptic Node.jsIn the Elliptic package 6.5.6 for Node.js, EDDSA signature malleability occurs because there is a mi…

medium
4
First published (updated )
REDHAT-BUG-2302458

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Node.jsA security flaw in Node.js allows a bypass of network import restrictions. By embedding non-network…

medium
4
First published (updated )
REDHAT-BUG-2296417

Node.jsA vulnerability has been identified in Node.js, affecting users of the experimental permission model…

low
1
First published (updated )
REDHAT-BUG-2299281

Node.jsA vulnerability has been identified in Node.js, affecting users of the experimental permission model…

low
1
First published (updated )
REDHAT-BUG-2296990

Node.jsMalformed headers can lead to HTTP request smuggling. Specifically, if a space is placed before a co…

medium
4
First published (updated )
REDHAT-BUG-2275392

Node.jsThe use of module.constructor.createRequire() can bypass the policy mechanism and require modules ou…

medium
4
First published (updated )
REDHAT-BUG-2230955

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Node.jsRace Condition

high
7
First published (updated )
REDHAT-BUG-2272764

Node.jsPath Traversal

high
7
First published (updated )
REDHAT-BUG-2244413

Node.jsA vulnerability in Node.js has been identified, allowing for a Denial of Service (DoS) attack throug…

medium
4
First published (updated )
REDHAT-BUG-2270559

Fwd: Node.js security updates for all active lease lines, July 2024

First published (updated )
https://seclists.org/oss-sec/2024/q3/95

Fwd: Node.js security updates for all active lease lines, July 2024

First published (updated )
https://seclists.org/oss-sec/2024/q3/55

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203