Filter
AND

Software

nodejs node.js
93
nodejs undici
1

McAfee ePolicy OrchestratorInteger overflow in CipherUpdate

high
7.5
First published (updated )
CVE-2021-23840

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487

redhat/nodejsNode.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Slowloris HTTP Denial of …

high
7.5
First published (updated )
CVE-2018-12122

redhat/nodejsUndici vulnerable to Regular Expression Denial of Service in Headers

high
7.5
First published (updated )
CVE-2023-24807

Nodejs Node.jsLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2023-23919

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Nodejs Node.jsCommand Injection, OS Command Injection

high
8.1
First published (updated )
CVE-2022-32212

Nodejs Node.jsUse After Free

high
7.5
First published (updated )
CVE-2021-22940

redhat/nodeNode.js could provide weaker than expected security, caused by an error related to the formatting lo…

high
8.2
First published (updated )
CVE-2022-21824

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by a string injection …

high
7.4
First published (updated )
CVE-2021-44532

Nodejs Node.jsIt was possible to bypass Permissions and access non authorized modules by using process.mainModule.…

high
7.5
First published (updated )
CVE-2023-23918

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…

high
7.4
First published (updated )
CVE-2021-44531

redhat/nodeA flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Nam…

high
7.4
First published (updated )
CVE-2021-44533

Nodejs Node.jsNode.js could allow a local attacker to gain elevated privileges on the system, caused by the DLL se…

high
7.3
First published (updated )
CVE-2022-32223

Nodejs Node.jsNode.js could allow a local attacker to gain elevated privileges on the system, caused by improper c…

high
7.8
First published (updated )
CVE-2021-22921

Nodejs Node.jsNode.js could allow a remote attacker to bypass security restrictions, caused by an error in the cry…

high
7.5
First published (updated )
CVE-2023-30586

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fedoraproject FedoraNode.js could allow a remote attacker to bypass security restrictions, caused by the circumvention o…

high
7.5
First published (updated )
CVE-2023-38552

Nodejs Node.jsCommand Injection, OS Command Injection

high
8.1
First published (updated )
CVE-2022-43548

redhat/opensslVulnerability in OpenSSL library

high
7.5
First published (updated )
CVE-2022-0778

OpenSSL OpenSSLInvalid handling of X509_verify_cert() internal errors in libssl

high
7.5
First published (updated )
CVE-2021-4044

Vercel Next.jsUnexpected server crash in Next.js

high
7.5
First published (updated )
CVE-2021-43803

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/opensslEDIPARTYNAME NULL pointer dereference

high
7.5
First published (updated )
CVE-2020-1971

Nodejs Node.jsSome HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9518

redhat/jbcs-httpd24-httpdSome HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service

high
7.5
First published (updated )
CVE-2019-9516

Nodejs Node.jsSome HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9512

Nodejs Node.jsSome HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9513

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

F5 Big-ip Local Traffic ManagerSome HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9514

F5 Big-ip Local Traffic ManagerSome HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9515

Nodejs Node.jsSome HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service

high
7.8
First published (updated )
CVE-2019-9511

Nodejs Node.jsKeep-alive HTTP and HTTPS connections can remain open and inactive for up to 2 minutes in Node.js 6.…

high
7.5
First published (updated )
CVE-2019-5739

Nodejs Node.jsAll actively supported release lines are vulnerable and the severity is LOW. An attacker can cause a…

high
7.5
First published (updated )
CVE-2019-5737

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203