Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
Typeapk
Namespacealpine
Namenodejs
Version22.22.2-r0
Qualifiers
arch x86
distroversion v3.21
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-1vp3-fzdr-yqbm
vulnerability_id VCID-1vp3-fzdr-yqbm
summary Node.js: Node.js: Information disclosure due to `fs.realpathSync.native()` bypassing filesystem read restrictions
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21715.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21715.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21715
reference_id
reference_type
scores
0
value 4e-05
scoring_system epss
scoring_elements 0.00177
published_at 2026-04-04T12:55:00Z
1
value 5e-05
scoring_system epss
scoring_elements 0.00201
published_at 2026-04-08T12:55:00Z
2
value 5e-05
scoring_system epss
scoring_elements 0.002
published_at 2026-04-09T12:55:00Z
3
value 5e-05
scoring_system epss
scoring_elements 0.00202
published_at 2026-04-13T12:55:00Z
4
value 5e-05
scoring_system epss
scoring_elements 0.00204
published_at 2026-04-16T12:55:00Z
5
value 5e-05
scoring_system epss
scoring_elements 0.00205
published_at 2026-04-18T12:55:00Z
6
value 5e-05
scoring_system epss
scoring_elements 0.00216
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21715
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21715
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21715
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453152
reference_id 2453152
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453152
5
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
6
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
7
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21715
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1vp3-fzdr-yqbm
1
url VCID-2t7c-dju9-pff6
vulnerability_id VCID-2t7c-dju9-pff6
summary Node.js: Node.js: Information disclosure via timing oracle in HMAC verification
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21713.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21713.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21713
reference_id
reference_type
scores
0
value 0.00011
scoring_system epss
scoring_elements 0.0144
published_at 2026-04-02T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03543
published_at 2026-04-04T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.0556
published_at 2026-04-18T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05602
published_at 2026-04-12T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05595
published_at 2026-04-13T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05546
published_at 2026-04-16T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05575
published_at 2026-04-07T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.05613
published_at 2026-04-08T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05638
published_at 2026-04-09T12:55:00Z
9
value 0.00021
scoring_system epss
scoring_elements 0.05611
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21713
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21713
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21713
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453160
reference_id 2453160
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453160
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-30T19:45:13Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
7
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
8
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21713
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2t7c-dju9-pff6
2
url VCID-43sf-4r41-wugc
vulnerability_id VCID-43sf-4r41-wugc
summary nodejs: Nodejs filesystem permissions bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55132
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01084
published_at 2026-04-02T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01077
published_at 2026-04-18T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.01073
published_at 2026-04-12T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01075
published_at 2026-04-13T12:55:00Z
4
value 0.0001
scoring_system epss
scoring_elements 0.01068
published_at 2026-04-16T12:55:00Z
5
value 0.0001
scoring_system epss
scoring_elements 0.01085
published_at 2026-04-04T12:55:00Z
6
value 0.0001
scoring_system epss
scoring_elements 0.01091
published_at 2026-04-07T12:55:00Z
7
value 0.0001
scoring_system epss
scoring_elements 0.01096
published_at 2026-04-09T12:55:00Z
8
value 0.0001
scoring_system epss
scoring_elements 0.0108
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55132
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431338
reference_id 2431338
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431338
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 2.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T18:38:44Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
12
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
13
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2025-55132
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-43sf-4r41-wugc
3
url VCID-96yh-1wub-zucg
vulnerability_id VCID-96yh-1wub-zucg
summary Node.js: Node.js: Memory leak and Denial of Service via crafted HTTP/2 WINDOW_UPDATE frames
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21714.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21714.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21714
reference_id
reference_type
scores
0
value 0.00012
scoring_system epss
scoring_elements 0.0161
published_at 2026-04-04T12:55:00Z
1
value 0.00014
scoring_system epss
scoring_elements 0.02672
published_at 2026-04-18T12:55:00Z
2
value 0.00014
scoring_system epss
scoring_elements 0.02382
published_at 2026-04-02T12:55:00Z
3
value 0.00014
scoring_system epss
scoring_elements 0.02682
published_at 2026-04-13T12:55:00Z
4
value 0.00014
scoring_system epss
scoring_elements 0.02664
published_at 2026-04-16T12:55:00Z
5
value 0.00016
scoring_system epss
scoring_elements 0.03389
published_at 2026-04-07T12:55:00Z
6
value 0.00016
scoring_system epss
scoring_elements 0.03392
published_at 2026-04-08T12:55:00Z
7
value 0.00016
scoring_system epss
scoring_elements 0.03414
published_at 2026-04-09T12:55:00Z
8
value 0.00016
scoring_system epss
scoring_elements 0.03372
published_at 2026-04-11T12:55:00Z
9
value 0.00016
scoring_system epss
scoring_elements 0.03344
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21714
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21714
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21714
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453161
reference_id 2453161
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453161
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-31T16:14:45Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
7
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
8
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21714
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96yh-1wub-zucg
4
url VCID-98fy-tedc-ube7
vulnerability_id VCID-98fy-tedc-ube7
summary nodejs: Nodejs uninitialized memory exposure
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55131.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55131.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55131
reference_id
reference_type
scores
0
value 0.00034
scoring_system epss
scoring_elements 0.09833
published_at 2026-04-02T12:55:00Z
1
value 0.00034
scoring_system epss
scoring_elements 0.09715
published_at 2026-04-18T12:55:00Z
2
value 0.00034
scoring_system epss
scoring_elements 0.09876
published_at 2026-04-12T12:55:00Z
3
value 0.00034
scoring_system epss
scoring_elements 0.09861
published_at 2026-04-13T12:55:00Z
4
value 0.00034
scoring_system epss
scoring_elements 0.09742
published_at 2026-04-16T12:55:00Z
5
value 0.00034
scoring_system epss
scoring_elements 0.09884
published_at 2026-04-04T12:55:00Z
6
value 0.00034
scoring_system epss
scoring_elements 0.09783
published_at 2026-04-07T12:55:00Z
7
value 0.00034
scoring_system epss
scoring_elements 0.09855
published_at 2026-04-08T12:55:00Z
8
value 0.00034
scoring_system epss
scoring_elements 0.09908
published_at 2026-04-09T12:55:00Z
9
value 0.00034
scoring_system epss
scoring_elements 0.09913
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55131
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55131
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55131
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431350
reference_id 2431350
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431350
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:31Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2025-55131
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-98fy-tedc-ube7
5
url VCID-bjza-25hu-vkad
vulnerability_id VCID-bjza-25hu-vkad
summary nodejs: Nodejs denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21637.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21637.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21637
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.1369
published_at 2026-04-02T12:55:00Z
1
value 0.00044
scoring_system epss
scoring_elements 0.1348
published_at 2026-04-18T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.13618
published_at 2026-04-12T12:55:00Z
3
value 0.00044
scoring_system epss
scoring_elements 0.1357
published_at 2026-04-13T12:55:00Z
4
value 0.00044
scoring_system epss
scoring_elements 0.13484
published_at 2026-04-16T12:55:00Z
5
value 0.00044
scoring_system epss
scoring_elements 0.13752
published_at 2026-04-04T12:55:00Z
6
value 0.00044
scoring_system epss
scoring_elements 0.13552
published_at 2026-04-07T12:55:00Z
7
value 0.00044
scoring_system epss
scoring_elements 0.13633
published_at 2026-04-08T12:55:00Z
8
value 0.00044
scoring_system epss
scoring_elements 0.13684
published_at 2026-04-09T12:55:00Z
9
value 0.00044
scoring_system epss
scoring_elements 0.13654
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21637
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21637
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21637
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431340
reference_id 2431340
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431340
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-21T20:22:28Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
18
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
19
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
20
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21637
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bjza-25hu-vkad
6
url VCID-dgkh-jdah-wfh9
vulnerability_id VCID-dgkh-jdah-wfh9
summary nodejs: v8: Node.js: Denial of Service via V8 string hashing mechanism due to predictable hash collisions
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21717.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21717.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21717
reference_id
reference_type
scores
0
value 0.00017
scoring_system epss
scoring_elements 0.04143
published_at 2026-04-02T12:55:00Z
1
value 0.0002
scoring_system epss
scoring_elements 0.05391
published_at 2026-04-04T12:55:00Z
2
value 0.00026
scoring_system epss
scoring_elements 0.07331
published_at 2026-04-18T12:55:00Z
3
value 0.00026
scoring_system epss
scoring_elements 0.07425
published_at 2026-04-12T12:55:00Z
4
value 0.00026
scoring_system epss
scoring_elements 0.07414
published_at 2026-04-13T12:55:00Z
5
value 0.00026
scoring_system epss
scoring_elements 0.07343
published_at 2026-04-16T12:55:00Z
6
value 0.00026
scoring_system epss
scoring_elements 0.07373
published_at 2026-04-07T12:55:00Z
7
value 0.00026
scoring_system epss
scoring_elements 0.07429
published_at 2026-04-08T12:55:00Z
8
value 0.00026
scoring_system epss
scoring_elements 0.07452
published_at 2026-04-09T12:55:00Z
9
value 0.00026
scoring_system epss
scoring_elements 0.07439
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21717
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21717
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21717
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453162
reference_id 2453162
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453162
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T19:46:02Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
7
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
8
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21717
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dgkh-jdah-wfh9
7
url VCID-dt7u-3usg-9uet
vulnerability_id VCID-dt7u-3usg-9uet
summary Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21710.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21710.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21710
reference_id
reference_type
scores
0
value 0.00014
scoring_system epss
scoring_elements 0.0252
published_at 2026-04-02T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03788
published_at 2026-04-04T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05763
published_at 2026-04-18T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05797
published_at 2026-04-12T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.0579
published_at 2026-04-13T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05755
published_at 2026-04-16T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05762
published_at 2026-04-07T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.05801
published_at 2026-04-08T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05826
published_at 2026-04-09T12:55:00Z
9
value 0.00021
scoring_system epss
scoring_elements 0.05805
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21710
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21710
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21710
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453151
reference_id 2453151
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453151
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-31T13:55:20Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7080
reference_id RHSA-2026:7080
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7080
7
reference_url https://access.redhat.com/errata/RHSA-2026:7123
reference_id RHSA-2026:7123
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7123
8
reference_url https://access.redhat.com/errata/RHSA-2026:7302
reference_id RHSA-2026:7302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7302
9
reference_url https://access.redhat.com/errata/RHSA-2026:7310
reference_id RHSA-2026:7310
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7310
10
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
11
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
12
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
13
reference_url https://access.redhat.com/errata/RHSA-2026:7896
reference_id RHSA-2026:7896
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7896
14
reference_url https://access.redhat.com/errata/RHSA-2026:7983
reference_id RHSA-2026:7983
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7983
15
reference_url https://access.redhat.com/errata/RHSA-2026:8339
reference_id RHSA-2026:8339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8339
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21710
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dt7u-3usg-9uet
8
url VCID-twc8-ewm7-wkb1
vulnerability_id VCID-twc8-ewm7-wkb1
summary nodejs: Node.js: Permission bypass allows unauthorized modification of file permissions and ownership via incomplete security fix.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21716.json
reference_id
reference_type
scores
0
value 3.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21716.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21716
reference_id
reference_type
scores
0
value 4e-05
scoring_system epss
scoring_elements 0.00177
published_at 2026-04-02T12:55:00Z
1
value 4e-05
scoring_system epss
scoring_elements 0.00199
published_at 2026-04-18T12:55:00Z
2
value 4e-05
scoring_system epss
scoring_elements 0.00169
published_at 2026-04-04T12:55:00Z
3
value 4e-05
scoring_system epss
scoring_elements 0.00196
published_at 2026-04-09T12:55:00Z
4
value 4e-05
scoring_system epss
scoring_elements 0.00198
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21716
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21716
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-21716
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453157
reference_id 2453157
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453157
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-31T14:27:06Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
7
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
8
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2026-21716
risk_score 1.7
exploitability 0.5
weighted_severity 3.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-twc8-ewm7-wkb1
9
url VCID-u8bq-8jp4-jkem
vulnerability_id VCID-u8bq-8jp4-jkem
summary nodejs: Nodejs denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59466.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59466.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59466
reference_id
reference_type
scores
0
value 0.00029
scoring_system epss
scoring_elements 0.0809
published_at 2026-04-02T12:55:00Z
1
value 0.00029
scoring_system epss
scoring_elements 0.08015
published_at 2026-04-18T12:55:00Z
2
value 0.00029
scoring_system epss
scoring_elements 0.0814
published_at 2026-04-12T12:55:00Z
3
value 0.00029
scoring_system epss
scoring_elements 0.08123
published_at 2026-04-13T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.0803
published_at 2026-04-16T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08133
published_at 2026-04-04T12:55:00Z
6
value 0.00029
scoring_system epss
scoring_elements 0.08085
published_at 2026-04-07T12:55:00Z
7
value 0.00029
scoring_system epss
scoring_elements 0.08146
published_at 2026-04-08T12:55:00Z
8
value 0.00029
scoring_system epss
scoring_elements 0.08168
published_at 2026-04-09T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.0816
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59466
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59466
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59466
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431343
reference_id 2431343
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431343
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T18:38:35Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2025-59466
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u8bq-8jp4-jkem
10
url VCID-v7uy-445x-tuan
vulnerability_id VCID-v7uy-445x-tuan
summary nodejs: Nodejs denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59465.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59465.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59465
reference_id
reference_type
scores
0
value 0.00076
scoring_system epss
scoring_elements 0.2297
published_at 2026-04-02T12:55:00Z
1
value 0.00076
scoring_system epss
scoring_elements 0.22865
published_at 2026-04-18T12:55:00Z
2
value 0.00076
scoring_system epss
scoring_elements 0.22913
published_at 2026-04-12T12:55:00Z
3
value 0.00076
scoring_system epss
scoring_elements 0.22856
published_at 2026-04-13T12:55:00Z
4
value 0.00076
scoring_system epss
scoring_elements 0.22871
published_at 2026-04-16T12:55:00Z
5
value 0.00076
scoring_system epss
scoring_elements 0.23014
published_at 2026-04-04T12:55:00Z
6
value 0.00076
scoring_system epss
scoring_elements 0.22805
published_at 2026-04-07T12:55:00Z
7
value 0.00076
scoring_system epss
scoring_elements 0.22879
published_at 2026-04-08T12:55:00Z
8
value 0.00076
scoring_system epss
scoring_elements 0.22931
published_at 2026-04-09T12:55:00Z
9
value 0.00076
scoring_system epss
scoring_elements 0.2295
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59465
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59465
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59465
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431349
reference_id 2431349
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431349
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-21T20:10:32Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2025-59465
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v7uy-445x-tuan
11
url VCID-x1an-pjq4-nbby
vulnerability_id VCID-x1an-pjq4-nbby
summary nodejs: Nodejs file permissions bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55130.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55130.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55130
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.02953
published_at 2026-04-02T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.02916
published_at 2026-04-18T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.02941
published_at 2026-04-12T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.02932
published_at 2026-04-13T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.02906
published_at 2026-04-16T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.02968
published_at 2026-04-04T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.02976
published_at 2026-04-07T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.02977
published_at 2026-04-08T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03002
published_at 2026-04-09T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.02964
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55130
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55130
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55130
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431352
reference_id 2431352
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431352
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:29Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
fixed_packages
0
url pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main
aliases CVE-2025-55130
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x1an-pjq4-nbby
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main