Nodejs

178 tracked vulnerabilities.

CVE-2023-38552 HIGH
Node.js - Info Disclosure
Oct 18, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-45143 LOW
Nodejs Undici < 5.26.2 - Information Disclosure
Oct 12, 2023
CVSS 3.9
EPSS 0.00
CVE-2023-44487 HIGHKEV
Ietf HTTP < 1.57.0 - Denial of Service
Oct 10, 2023
CVSS 7.5
EPSS 0.94
CVE-2023-32558 HIGH
Nodejs Node.js < 20.5.1 - Path Traversal
Sep 12, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-32005 MEDIUM
Node.js <20 - Info Disclosure
Sep 12, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-32559 HIGH
Nodejs Node.js < 16.20.1 - Improper Privilege Management
Aug 24, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-32002 CRITICAL
Node.js - Policy Bypass
Aug 21, 2023
CVSS 9.8
EPSS 0.00
CVE-2023-32006 HIGH
Node.js - Code Injection
Aug 15, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-32004 HIGH
Node.js <20 - Buffer Overflow
Aug 15, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-32003 MEDIUM
Node.js <20 - Path Traversal
Aug 15, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-30589 HIGH
Node <v20 - SSRF
Jul 01, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-30586 HIGH
Nodejs Node.js < 20.3.1 - Missing Authorization
Jul 01, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-23920 MEDIUM
Node.js <19.6.1-<14.21.3 - Privilege Escalation
Feb 23, 2023
CVSS 4.2
EPSS 0.00
CVE-2023-23919 HIGH
Node.js <19.2.0, <18.14.1, <16.19.1, <14.21.3 - DoS
Feb 23, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-23918 HIGH
Node.js <19.6.1, <18.14.1, <16.19.1, <14.21.3 - Privilege Escalation
Feb 23, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-24807 HIGH
Undici <5.19.1 - ReDoS
Feb 16, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-23936 MEDIUM
Undici <5.19.1 - CRLF Injection
Feb 16, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-43548 HIGH
Node.js <14.21.1, <16.18.1, <18.12.1, <19.0.1 - Command Injection
Dec 05, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-35256 MEDIUM
Nodejs Node.js < 14.14.0 - HTTP Request Smuggling
Dec 05, 2022
CVSS 6.5
EPSS 0.04
CVE-2022-35255 CRITICAL
Node.js 18 - Info Disclosure
Dec 05, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-3786 HIGH
Openssl < 3.0.7 - Buffer Overflow
Nov 01, 2022
CVSS 7.5
EPSS 0.18
CVE-2022-3602 HIGH
Openssl < 3.0.7 - Out-of-Bounds Write
Nov 01, 2022
CVSS 7.5
EPSS 0.82
CVE-2022-35948 MEDIUM
undici <5.8.0 - CRLF Injection
Aug 15, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-35949 MEDIUM
undici - SSRF
Aug 12, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-31151 LOW
undici - Open Redirect
Jul 21, 2022
CVSS 3.7
EPSS 0.00
Products
node.js 163 undici 13 nodejs 3
Quick Filters
Critical CVEs With Exploits In CISA KEV