Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/nodejs@0?distro=trixie
Typedeb
Namespacedebian
Namenodejs
Version0
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version0.6.17~dfsg1-1
Latest_non_vulnerable_version22.22.2+dfsg+~cs22.19.15-3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-35e4-h5zk-5ffn
vulnerability_id VCID-35e4-h5zk-5ffn
summary A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-3566
reference_id
reference_type
scores
0
value 0.0709
scoring_system epss
scoring_elements 0.91485
published_at 2026-04-02T12:55:00Z
1
value 0.0709
scoring_system epss
scoring_elements 0.91541
published_at 2026-04-21T12:55:00Z
2
value 0.0709
scoring_system epss
scoring_elements 0.91546
published_at 2026-04-16T12:55:00Z
3
value 0.0709
scoring_system epss
scoring_elements 0.91526
published_at 2026-04-12T12:55:00Z
4
value 0.0709
scoring_system epss
scoring_elements 0.91524
published_at 2026-04-13T12:55:00Z
5
value 0.0709
scoring_system epss
scoring_elements 0.91519
published_at 2026-04-09T12:55:00Z
6
value 0.0709
scoring_system epss
scoring_elements 0.91513
published_at 2026-04-08T12:55:00Z
7
value 0.0709
scoring_system epss
scoring_elements 0.915
published_at 2026-04-07T12:55:00Z
8
value 0.0709
scoring_system epss
scoring_elements 0.91492
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-3566
1
reference_url https://kb.cert.org/vuls/id/123335
reference_id 123335
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://kb.cert.org/vuls/id/123335
2
reference_url https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/
reference_id batbadbut-you-cant-securely-execute-commands-on-windows
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/
3
reference_url https://www.cve.org/CVERecord?id=CVE-2024-1874
reference_id CVERecord?id=CVE-2024-1874
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://www.cve.org/CVERecord?id=CVE-2024-1874
4
reference_url https://www.cve.org/CVERecord?id=CVE-2024-22423
reference_id CVERecord?id=CVE-2024-22423
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://www.cve.org/CVERecord?id=CVE-2024-22423
5
reference_url https://www.cve.org/CVERecord?id=CVE-2024-24576
reference_id CVERecord?id=CVE-2024-24576
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://www.cve.org/CVERecord?id=CVE-2024-24576
6
reference_url https://learn.microsoft.com/en-us/archive/blogs/twistylittlepassagesallalike/everyone-quotes-command-line-arguments-the-wrong-way
reference_id everyone-quotes-command-line-arguments-the-wrong-way
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-04-15T16:13:02Z/
url https://learn.microsoft.com/en-us/archive/blogs/twistylittlepassagesallalike/everyone-quotes-command-line-arguments-the-wrong-way
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-3566
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-35e4-h5zk-5ffn
1
url VCID-39c4-njbs-pyeq
vulnerability_id VCID-39c4-njbs-pyeq
summary 
Multiple vulnerabilities have been found in NodeJS, the worst of
    which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8251.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8251.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-8251
reference_id
reference_type
scores
0
value 0.04991
scoring_system epss
scoring_elements 0.89658
published_at 2026-04-01T12:55:00Z
1
value 0.04991
scoring_system epss
scoring_elements 0.8966
published_at 2026-04-02T12:55:00Z
2
value 0.04991
scoring_system epss
scoring_elements 0.89675
published_at 2026-04-04T12:55:00Z
3
value 0.04991
scoring_system epss
scoring_elements 0.89677
published_at 2026-04-07T12:55:00Z
4
value 0.04991
scoring_system epss
scoring_elements 0.89695
published_at 2026-04-08T12:55:00Z
5
value 0.04991
scoring_system epss
scoring_elements 0.897
published_at 2026-04-13T12:55:00Z
6
value 0.04991
scoring_system epss
scoring_elements 0.89708
published_at 2026-04-11T12:55:00Z
7
value 0.04991
scoring_system epss
scoring_elements 0.89706
published_at 2026-04-12T12:55:00Z
8
value 0.04991
scoring_system epss
scoring_elements 0.89715
published_at 2026-04-16T12:55:00Z
9
value 0.04991
scoring_system epss
scoring_elements 0.89716
published_at 2026-04-18T12:55:00Z
10
value 0.04991
scoring_system epss
scoring_elements 0.89711
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-8251
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1879314
reference_id 1879314
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1879314
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2020-8251
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-39c4-njbs-pyeq
2
url VCID-3nb1-jud1-rkgk
vulnerability_id VCID-3nb1-jud1-rkgk
summary nodejs: `Buffer` to UTF8 `String` conversion DoS
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5380.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5380.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-5380
reference_id
reference_type
scores
0
value 0.0062
scoring_system epss
scoring_elements 0.69972
published_at 2026-04-01T12:55:00Z
1
value 0.0062
scoring_system epss
scoring_elements 0.69984
published_at 2026-04-02T12:55:00Z
2
value 0.0062
scoring_system epss
scoring_elements 0.69999
published_at 2026-04-04T12:55:00Z
3
value 0.0062
scoring_system epss
scoring_elements 0.69975
published_at 2026-04-07T12:55:00Z
4
value 0.0062
scoring_system epss
scoring_elements 0.70024
published_at 2026-04-08T12:55:00Z
5
value 0.0062
scoring_system epss
scoring_elements 0.7004
published_at 2026-04-09T12:55:00Z
6
value 0.0062
scoring_system epss
scoring_elements 0.70063
published_at 2026-04-11T12:55:00Z
7
value 0.0062
scoring_system epss
scoring_elements 0.70048
published_at 2026-04-12T12:55:00Z
8
value 0.0062
scoring_system epss
scoring_elements 0.70035
published_at 2026-04-13T12:55:00Z
9
value 0.0062
scoring_system epss
scoring_elements 0.70078
published_at 2026-04-16T12:55:00Z
10
value 0.0062
scoring_system epss
scoring_elements 0.70087
published_at 2026-04-18T12:55:00Z
11
value 0.0062
scoring_system epss
scoring_elements 0.70067
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-5380
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1239332
reference_id 1239332
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1239332
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2015-5380
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3nb1-jud1-rkgk
3
url VCID-3v19-cq1w-y3cz
vulnerability_id VCID-3v19-cq1w-y3cz
summary nodejs: Vulnerable to CVE-2017-3737 due to embedded OpenSSL
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15896.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15896.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-15896
reference_id
reference_type
scores
0
value 0.00161
scoring_system epss
scoring_elements 0.36989
published_at 2026-04-21T12:55:00Z
1
value 0.00161
scoring_system epss
scoring_elements 0.37059
published_at 2026-04-08T12:55:00Z
2
value 0.00161
scoring_system epss
scoring_elements 0.37072
published_at 2026-04-09T12:55:00Z
3
value 0.00161
scoring_system epss
scoring_elements 0.37081
published_at 2026-04-11T12:55:00Z
4
value 0.00161
scoring_system epss
scoring_elements 0.37048
published_at 2026-04-18T12:55:00Z
5
value 0.00161
scoring_system epss
scoring_elements 0.37021
published_at 2026-04-13T12:55:00Z
6
value 0.00161
scoring_system epss
scoring_elements 0.37066
published_at 2026-04-16T12:55:00Z
7
value 0.00185
scoring_system epss
scoring_elements 0.40181
published_at 2026-04-07T12:55:00Z
8
value 0.00185
scoring_system epss
scoring_elements 0.40086
published_at 2026-04-01T12:55:00Z
9
value 0.00185
scoring_system epss
scoring_elements 0.40235
published_at 2026-04-02T12:55:00Z
10
value 0.00185
scoring_system epss
scoring_elements 0.40259
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-15896
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.4
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:N
1
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1525106
reference_id 1525106
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1525106
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-15896
reference_id CVE-2017-15896
reference_type
scores
0
value 6.4
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:N
1
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-15896
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2017-15896
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3v19-cq1w-y3cz
4
url VCID-43sf-4r41-wugc
vulnerability_id VCID-43sf-4r41-wugc
summary nodejs: Nodejs filesystem permissions bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55132
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01084
published_at 2026-04-02T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01142
published_at 2026-04-21T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.01075
published_at 2026-04-13T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01068
published_at 2026-04-16T12:55:00Z
4
value 0.0001
scoring_system epss
scoring_elements 0.01077
published_at 2026-04-18T12:55:00Z
5
value 0.0001
scoring_system epss
scoring_elements 0.01085
published_at 2026-04-04T12:55:00Z
6
value 0.0001
scoring_system epss
scoring_elements 0.01091
published_at 2026-04-07T12:55:00Z
7
value 0.0001
scoring_system epss
scoring_elements 0.01096
published_at 2026-04-09T12:55:00Z
8
value 0.0001
scoring_system epss
scoring_elements 0.0108
published_at 2026-04-11T12:55:00Z
9
value 0.0001
scoring_system epss
scoring_elements 0.01073
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55132
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431338
reference_id 2431338
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431338
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 2.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T18:38:44Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
12
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
13
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
14
reference_url https://access.redhat.com/errata/RHSA-2026:6402
reference_id RHSA-2026:6402
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6402
15
reference_url https://access.redhat.com/errata/RHSA-2026:6431
reference_id RHSA-2026:6431
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6431
16
reference_url https://access.redhat.com/errata/RHSA-2026:7378
reference_id RHSA-2026:7378
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7378
17
reference_url https://access.redhat.com/errata/RHSA-2026:7386
reference_id RHSA-2026:7386
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7386
18
reference_url https://access.redhat.com/errata/RHSA-2026:7387
reference_id RHSA-2026:7387
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7387
19
reference_url https://access.redhat.com/errata/RHSA-2026:7657
reference_id RHSA-2026:7657
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7657
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.0%252Bdfsg%252B~cs22.19.6-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-55132
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-43sf-4r41-wugc
5
url VCID-4ak9-89fm-ybh2
vulnerability_id VCID-4ak9-89fm-ybh2
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30582.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30582.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30582
reference_id
reference_type
scores
0
value 0.00098
scoring_system epss
scoring_elements 0.2715
published_at 2026-04-02T12:55:00Z
1
value 0.00098
scoring_system epss
scoring_elements 0.26942
published_at 2026-04-21T12:55:00Z
2
value 0.00098
scoring_system epss
scoring_elements 0.26994
published_at 2026-04-13T12:55:00Z
3
value 0.00098
scoring_system epss
scoring_elements 0.27003
published_at 2026-04-16T12:55:00Z
4
value 0.00098
scoring_system epss
scoring_elements 0.27187
published_at 2026-04-04T12:55:00Z
5
value 0.00098
scoring_system epss
scoring_elements 0.26978
published_at 2026-04-18T12:55:00Z
6
value 0.00098
scoring_system epss
scoring_elements 0.27047
published_at 2026-04-08T12:55:00Z
7
value 0.00098
scoring_system epss
scoring_elements 0.27092
published_at 2026-04-09T12:55:00Z
8
value 0.00098
scoring_system epss
scoring_elements 0.27095
published_at 2026-04-11T12:55:00Z
9
value 0.00098
scoring_system epss
scoring_elements 0.27052
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30582
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219832
reference_id 2219832
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219832
3
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
4
reference_url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
reference_id june-2023-security-releases
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T18:09:51Z/
url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30582
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4ak9-89fm-ybh2
6
url VCID-5afy-ud31-hbaw
vulnerability_id VCID-5afy-ud31-hbaw
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21890.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21890.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-21890
reference_id
reference_type
scores
0
value 0.01439
scoring_system epss
scoring_elements 0.80751
published_at 2026-04-21T12:55:00Z
1
value 0.01439
scoring_system epss
scoring_elements 0.80679
published_at 2026-04-07T12:55:00Z
2
value 0.01439
scoring_system epss
scoring_elements 0.80707
published_at 2026-04-08T12:55:00Z
3
value 0.01439
scoring_system epss
scoring_elements 0.80717
published_at 2026-04-09T12:55:00Z
4
value 0.01439
scoring_system epss
scoring_elements 0.80734
published_at 2026-04-11T12:55:00Z
5
value 0.01439
scoring_system epss
scoring_elements 0.8072
published_at 2026-04-12T12:55:00Z
6
value 0.01439
scoring_system epss
scoring_elements 0.80712
published_at 2026-04-13T12:55:00Z
7
value 0.01439
scoring_system epss
scoring_elements 0.80748
published_at 2026-04-18T12:55:00Z
8
value 0.01439
scoring_system epss
scoring_elements 0.80662
published_at 2026-04-02T12:55:00Z
9
value 0.01439
scoring_system epss
scoring_elements 0.80683
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-21890
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2257156
reference_id 2257156
reference_type
scores
0
value 5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:50:11Z/
url https://hackerone.com/reports/2257156
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2265722
reference_id 2265722
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2265722
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://security.netapp.com/advisory/ntap-20240315-0002/
reference_id ntap-20240315-0002
reference_type
scores
0
value 5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:50:11Z/
url https://security.netapp.com/advisory/ntap-20240315-0002/
7
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
8
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-21890
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5afy-ud31-hbaw
7
url VCID-67xm-uc9p-y7f2
vulnerability_id VCID-67xm-uc9p-y7f2
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22020.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22020.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22020
reference_id
reference_type
scores
0
value 0.00133
scoring_system epss
scoring_elements 0.32809
published_at 2026-04-21T12:55:00Z
1
value 0.00133
scoring_system epss
scoring_elements 0.32859
published_at 2026-04-08T12:55:00Z
2
value 0.00133
scoring_system epss
scoring_elements 0.32888
published_at 2026-04-09T12:55:00Z
3
value 0.00133
scoring_system epss
scoring_elements 0.32889
published_at 2026-04-11T12:55:00Z
4
value 0.00133
scoring_system epss
scoring_elements 0.32851
published_at 2026-04-12T12:55:00Z
5
value 0.00133
scoring_system epss
scoring_elements 0.32825
published_at 2026-04-13T12:55:00Z
6
value 0.00133
scoring_system epss
scoring_elements 0.32867
published_at 2026-04-16T12:55:00Z
7
value 0.00133
scoring_system epss
scoring_elements 0.32845
published_at 2026-04-18T12:55:00Z
8
value 0.00133
scoring_system epss
scoring_elements 0.32954
published_at 2026-04-02T12:55:00Z
9
value 0.00133
scoring_system epss
scoring_elements 0.32989
published_at 2026-04-04T12:55:00Z
10
value 0.00133
scoring_system epss
scoring_elements 0.32811
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22020
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2092749
reference_id 2092749
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-13T03:55:30Z/
url https://hackerone.com/reports/2092749
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2296417
reference_id 2296417
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2296417
5
reference_url http://www.openwall.com/lists/oss-security/2024/07/19/3
reference_id 3
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-13T03:55:30Z/
url http://www.openwall.com/lists/oss-security/2024/07/19/3
6
reference_url http://www.openwall.com/lists/oss-security/2024/07/11/6
reference_id 6
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-13T03:55:30Z/
url http://www.openwall.com/lists/oss-security/2024/07/11/6
7
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
8
reference_url https://access.redhat.com/errata/RHSA-2024:5814
reference_id RHSA-2024:5814
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5814
9
reference_url https://access.redhat.com/errata/RHSA-2024:5815
reference_id RHSA-2024:5815
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5815
10
reference_url https://access.redhat.com/errata/RHSA-2024:6147
reference_id RHSA-2024:6147
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:6147
11
reference_url https://access.redhat.com/errata/RHSA-2024:6148
reference_id RHSA-2024:6148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:6148
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.15.1%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-22020
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-67xm-uc9p-y7f2
8
url VCID-7cth-47w2-17hy
vulnerability_id VCID-7cth-47w2-17hy
summary Multiple vulnerabilities have been found in c-ares, the worst of which could result in the loss of confidentiality or integrity.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22940.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22940.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22940
reference_id
reference_type
scores
0
value 0.00386
scoring_system epss
scoring_elements 0.59679
published_at 2026-04-01T12:55:00Z
1
value 0.00386
scoring_system epss
scoring_elements 0.59824
published_at 2026-04-21T12:55:00Z
2
value 0.00386
scoring_system epss
scoring_elements 0.59834
published_at 2026-04-16T12:55:00Z
3
value 0.00386
scoring_system epss
scoring_elements 0.59841
published_at 2026-04-18T12:55:00Z
4
value 0.00386
scoring_system epss
scoring_elements 0.59753
published_at 2026-04-02T12:55:00Z
5
value 0.00386
scoring_system epss
scoring_elements 0.59777
published_at 2026-04-04T12:55:00Z
6
value 0.00386
scoring_system epss
scoring_elements 0.59747
published_at 2026-04-07T12:55:00Z
7
value 0.00386
scoring_system epss
scoring_elements 0.59799
published_at 2026-04-08T12:55:00Z
8
value 0.00386
scoring_system epss
scoring_elements 0.59812
published_at 2026-04-09T12:55:00Z
9
value 0.00386
scoring_system epss
scoring_elements 0.59831
published_at 2026-04-11T12:55:00Z
10
value 0.00386
scoring_system epss
scoring_elements 0.59815
published_at 2026-04-12T12:55:00Z
11
value 0.00386
scoring_system epss
scoring_elements 0.59797
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22940
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1993029
reference_id 1993029
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1993029
4
reference_url https://security.archlinux.org/AVG-2283
reference_id AVG-2283
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2283
5
reference_url https://security.gentoo.org/glsa/202401-02
reference_id GLSA-202401-02
reference_type
scores
url https://security.gentoo.org/glsa/202401-02
6
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
7
reference_url https://access.redhat.com/errata/RHSA-2021:3280
reference_id RHSA-2021:3280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3280
8
reference_url https://access.redhat.com/errata/RHSA-2021:3281
reference_id RHSA-2021:3281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3281
9
reference_url https://access.redhat.com/errata/RHSA-2021:3623
reference_id RHSA-2021:3623
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3623
10
reference_url https://access.redhat.com/errata/RHSA-2021:3638
reference_id RHSA-2021:3638
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3638
11
reference_url https://access.redhat.com/errata/RHSA-2021:3639
reference_id RHSA-2021:3639
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3639
12
reference_url https://access.redhat.com/errata/RHSA-2021:3666
reference_id RHSA-2021:3666
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3666
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.5~dfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@12.22.5~dfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.5~dfsg-1%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2021-22940
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7cth-47w2-17hy
9
url VCID-7nnu-jtjx-u3ff
vulnerability_id VCID-7nnu-jtjx-u3ff
summary Node.js: Permissions policies can be bypassed via process.mainModule
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23918.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23918.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-23918
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05429
published_at 2026-04-16T12:55:00Z
1
value 0.0002
scoring_system epss
scoring_elements 0.05599
published_at 2026-04-21T12:55:00Z
2
value 0.0002
scoring_system epss
scoring_elements 0.05526
published_at 2026-04-09T12:55:00Z
3
value 0.0002
scoring_system epss
scoring_elements 0.055
published_at 2026-04-11T12:55:00Z
4
value 0.0002
scoring_system epss
scoring_elements 0.05486
published_at 2026-04-12T12:55:00Z
5
value 0.0002
scoring_system epss
scoring_elements 0.05479
published_at 2026-04-13T12:55:00Z
6
value 0.0002
scoring_system epss
scoring_elements 0.05437
published_at 2026-04-18T12:55:00Z
7
value 0.0002
scoring_system epss
scoring_elements 0.05463
published_at 2026-04-04T12:55:00Z
8
value 0.0002
scoring_system epss
scoring_elements 0.05469
published_at 2026-04-07T12:55:00Z
9
value 0.0002
scoring_system epss
scoring_elements 0.05505
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-23918
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031834
reference_id 1031834
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031834
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2171935
reference_id 2171935
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2171935
5
reference_url https://nodejs.org/en/blog/vulnerability/february-2023-security-releases/
reference_id february-2023-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-12T17:47:16Z/
url https://nodejs.org/en/blog/vulnerability/february-2023-security-releases/
6
reference_url https://security.netapp.com/advisory/ntap-20230316-0008/
reference_id ntap-20230316-0008
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-12T17:47:16Z/
url https://security.netapp.com/advisory/ntap-20230316-0008/
7
reference_url https://access.redhat.com/errata/RHSA-2023:1533
reference_id RHSA-2023:1533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1533
8
reference_url https://access.redhat.com/errata/RHSA-2023:1582
reference_id RHSA-2023:1582
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1582
9
reference_url https://access.redhat.com/errata/RHSA-2023:1583
reference_id RHSA-2023:1583
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1583
10
reference_url https://access.redhat.com/errata/RHSA-2023:1742
reference_id RHSA-2023:1742
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1742
11
reference_url https://access.redhat.com/errata/RHSA-2023:1743
reference_id RHSA-2023:1743
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1743
12
reference_url https://access.redhat.com/errata/RHSA-2023:1744
reference_id RHSA-2023:1744
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1744
13
reference_url https://access.redhat.com/errata/RHSA-2023:2654
reference_id RHSA-2023:2654
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2654
14
reference_url https://access.redhat.com/errata/RHSA-2023:2655
reference_id RHSA-2023:2655
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2655
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-2%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-23918
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7nnu-jtjx-u3ff
10
url VCID-7z51-jgw6-v7hr
vulnerability_id VCID-7z51-jgw6-v7hr
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32005.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32005.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-32005
reference_id
reference_type
scores
0
value 0.01138
scoring_system epss
scoring_elements 0.78381
published_at 2026-04-04T12:55:00Z
1
value 0.01138
scoring_system epss
scoring_elements 0.7835
published_at 2026-04-02T12:55:00Z
2
value 0.01324
scoring_system epss
scoring_elements 0.79932
published_at 2026-04-21T12:55:00Z
3
value 0.01324
scoring_system epss
scoring_elements 0.79904
published_at 2026-04-09T12:55:00Z
4
value 0.01324
scoring_system epss
scoring_elements 0.79924
published_at 2026-04-11T12:55:00Z
5
value 0.01324
scoring_system epss
scoring_elements 0.79908
published_at 2026-04-12T12:55:00Z
6
value 0.01324
scoring_system epss
scoring_elements 0.799
published_at 2026-04-13T12:55:00Z
7
value 0.01324
scoring_system epss
scoring_elements 0.79929
published_at 2026-04-18T12:55:00Z
8
value 0.01324
scoring_system epss
scoring_elements 0.79867
published_at 2026-04-07T12:55:00Z
9
value 0.01324
scoring_system epss
scoring_elements 0.79896
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-32005
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2051224
reference_id 2051224
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:42Z/
url https://hackerone.com/reports/2051224
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2230958
reference_id 2230958
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2230958
5
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
6
reference_url https://security.netapp.com/advisory/ntap-20231103-0004/
reference_id ntap-20231103-0004
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:42Z/
url https://security.netapp.com/advisory/ntap-20231103-0004/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-32005
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7z51-jgw6-v7hr
11
url VCID-8myg-sjwy-yqfp
vulnerability_id VCID-8myg-sjwy-yqfp
summary Node.js: OpenSSL error handling issues in nodejs crypto library
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23919.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23919.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-23919
reference_id
reference_type
scores
0
value 0.00374
scoring_system epss
scoring_elements 0.59089
published_at 2026-04-21T12:55:00Z
1
value 0.00508
scoring_system epss
scoring_elements 0.66318
published_at 2026-04-16T12:55:00Z
2
value 0.00508
scoring_system epss
scoring_elements 0.66334
published_at 2026-04-18T12:55:00Z
3
value 0.0057
scoring_system epss
scoring_elements 0.68588
published_at 2026-04-13T12:55:00Z
4
value 0.0057
scoring_system epss
scoring_elements 0.68536
published_at 2026-04-07T12:55:00Z
5
value 0.0057
scoring_system epss
scoring_elements 0.6863
published_at 2026-04-11T12:55:00Z
6
value 0.0057
scoring_system epss
scoring_elements 0.68605
published_at 2026-04-09T12:55:00Z
7
value 0.0057
scoring_system epss
scoring_elements 0.68618
published_at 2026-04-12T12:55:00Z
8
value 0.0057
scoring_system epss
scoring_elements 0.68587
published_at 2026-04-08T12:55:00Z
9
value 0.00689
scoring_system epss
scoring_elements 0.71716
published_at 2026-04-02T12:55:00Z
10
value 0.00689
scoring_system epss
scoring_elements 0.71735
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-23919
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031834
reference_id 1031834
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031834
4
reference_url https://hackerone.com/reports/1808596
reference_id 1808596
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-12T14:26:46Z/
url https://hackerone.com/reports/1808596
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2172170
reference_id 2172170
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2172170
6
reference_url https://nodejs.org/en/blog/vulnerability/february-2023-security-releases/
reference_id february-2023-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-12T14:26:46Z/
url https://nodejs.org/en/blog/vulnerability/february-2023-security-releases/
7
reference_url https://security.netapp.com/advisory/ntap-20230316-0008/
reference_id ntap-20230316-0008
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-12T14:26:46Z/
url https://security.netapp.com/advisory/ntap-20230316-0008/
8
reference_url https://access.redhat.com/errata/RHSA-2023:1582
reference_id RHSA-2023:1582
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1582
9
reference_url https://access.redhat.com/errata/RHSA-2023:1583
reference_id RHSA-2023:1583
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:1583
10
reference_url https://access.redhat.com/errata/RHSA-2023:2654
reference_id RHSA-2023:2654
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2654
11
reference_url https://usn.ubuntu.com/6672-1/
reference_id USN-6672-1
reference_type
scores
url https://usn.ubuntu.com/6672-1/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-23919
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8myg-sjwy-yqfp
12
url VCID-8qmf-bwmg-5bar
vulnerability_id VCID-8qmf-bwmg-5bar
summary nodejs: Unitialized buffer due to incorrect encoding
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15897.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15897.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-15897
reference_id
reference_type
scores
0
value 0.00492
scoring_system epss
scoring_elements 0.65552
published_at 2026-04-01T12:55:00Z
1
value 0.00492
scoring_system epss
scoring_elements 0.65648
published_at 2026-04-08T12:55:00Z
2
value 0.00492
scoring_system epss
scoring_elements 0.656
published_at 2026-04-02T12:55:00Z
3
value 0.00492
scoring_system epss
scoring_elements 0.6563
published_at 2026-04-04T12:55:00Z
4
value 0.00492
scoring_system epss
scoring_elements 0.65596
published_at 2026-04-07T12:55:00Z
5
value 0.00642
scoring_system epss
scoring_elements 0.70667
published_at 2026-04-18T12:55:00Z
6
value 0.00642
scoring_system epss
scoring_elements 0.70659
published_at 2026-04-16T12:55:00Z
7
value 0.00642
scoring_system epss
scoring_elements 0.70646
published_at 2026-04-21T12:55:00Z
8
value 0.00642
scoring_system epss
scoring_elements 0.7062
published_at 2026-04-09T12:55:00Z
9
value 0.00642
scoring_system epss
scoring_elements 0.70643
published_at 2026-04-11T12:55:00Z
10
value 0.00642
scoring_system epss
scoring_elements 0.70628
published_at 2026-04-12T12:55:00Z
11
value 0.00642
scoring_system epss
scoring_elements 0.70614
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-15897
2
reference_url https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1532534
reference_id 1532534
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1532534
4
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-15897
reference_id CVE-2017-15897
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:N/A:N
1
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-15897
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2017-15897
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8qmf-bwmg-5bar
13
url VCID-9uux-1n93-4kcs
vulnerability_id VCID-9uux-1n93-4kcs
summary nodejs: Unintentional exposure of uninitialized memory
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7166.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7166.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-7166
reference_id
reference_type
scores
0
value 0.0086
scoring_system epss
scoring_elements 0.74986
published_at 2026-04-01T12:55:00Z
1
value 0.0086
scoring_system epss
scoring_elements 0.74989
published_at 2026-04-02T12:55:00Z
2
value 0.0086
scoring_system epss
scoring_elements 0.75018
published_at 2026-04-04T12:55:00Z
3
value 0.0086
scoring_system epss
scoring_elements 0.74995
published_at 2026-04-07T12:55:00Z
4
value 0.0086
scoring_system epss
scoring_elements 0.75029
published_at 2026-04-08T12:55:00Z
5
value 0.0086
scoring_system epss
scoring_elements 0.7504
published_at 2026-04-09T12:55:00Z
6
value 0.0086
scoring_system epss
scoring_elements 0.75062
published_at 2026-04-11T12:55:00Z
7
value 0.0086
scoring_system epss
scoring_elements 0.75041
published_at 2026-04-12T12:55:00Z
8
value 0.0086
scoring_system epss
scoring_elements 0.75031
published_at 2026-04-13T12:55:00Z
9
value 0.0086
scoring_system epss
scoring_elements 0.75068
published_at 2026-04-16T12:55:00Z
10
value 0.0086
scoring_system epss
scoring_elements 0.75075
published_at 2026-04-18T12:55:00Z
11
value 0.0086
scoring_system epss
scoring_elements 0.75065
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-7166
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1620215
reference_id 1620215
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1620215
3
reference_url https://access.redhat.com/errata/RHSA-2018:2553
reference_id RHSA-2018:2553
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:2553
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2018-7166
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9uux-1n93-4kcs
14
url VCID-a7mj-p1d7-h3cv
vulnerability_id VCID-a7mj-p1d7-h3cv
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39331.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39331.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-39331
reference_id
reference_type
scores
0
value 0.00719
scoring_system epss
scoring_elements 0.72413
published_at 2026-04-02T12:55:00Z
1
value 0.00719
scoring_system epss
scoring_elements 0.72495
published_at 2026-04-21T12:55:00Z
2
value 0.00719
scoring_system epss
scoring_elements 0.72483
published_at 2026-04-11T12:55:00Z
3
value 0.00719
scoring_system epss
scoring_elements 0.72465
published_at 2026-04-12T12:55:00Z
4
value 0.00719
scoring_system epss
scoring_elements 0.72455
published_at 2026-04-13T12:55:00Z
5
value 0.00719
scoring_system epss
scoring_elements 0.72497
published_at 2026-04-16T12:55:00Z
6
value 0.00719
scoring_system epss
scoring_elements 0.72506
published_at 2026-04-18T12:55:00Z
7
value 0.00719
scoring_system epss
scoring_elements 0.72431
published_at 2026-04-04T12:55:00Z
8
value 0.00719
scoring_system epss
scoring_elements 0.72408
published_at 2026-04-07T12:55:00Z
9
value 0.00719
scoring_system epss
scoring_elements 0.72447
published_at 2026-04-08T12:55:00Z
10
value 0.00719
scoring_system epss
scoring_elements 0.7246
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-39331
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2092852
reference_id 2092852
reference_type
scores
0
value 7.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-13T15:17:01Z/
url https://hackerone.com/reports/2092852
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2244413
reference_id 2244413
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2244413
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://security.netapp.com/advisory/ntap-20231116-0009/
reference_id ntap-20231116-0009
reference_type
scores
0
value 7.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-13T15:17:01Z/
url https://security.netapp.com/advisory/ntap-20231116-0009/
7
reference_url https://access.redhat.com/errata/RHSA-2023:7205
reference_id RHSA-2023:7205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7205
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-39331
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a7mj-p1d7-h3cv
15
url VCID-ap4u-dkwx-1kb3
vulnerability_id VCID-ap4u-dkwx-1kb3
summary Multiple vulnerabilities have been found in c-ares, the worst of which could result in the loss of confidentiality or integrity.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22931.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-22931.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22931
reference_id
reference_type
scores
0
value 0.00662
scoring_system epss
scoring_elements 0.71095
published_at 2026-04-01T12:55:00Z
1
value 0.00662
scoring_system epss
scoring_elements 0.71174
published_at 2026-04-21T12:55:00Z
2
value 0.00662
scoring_system epss
scoring_elements 0.71104
published_at 2026-04-02T12:55:00Z
3
value 0.00662
scoring_system epss
scoring_elements 0.71122
published_at 2026-04-04T12:55:00Z
4
value 0.00662
scoring_system epss
scoring_elements 0.71097
published_at 2026-04-07T12:55:00Z
5
value 0.00662
scoring_system epss
scoring_elements 0.71139
published_at 2026-04-08T12:55:00Z
6
value 0.00662
scoring_system epss
scoring_elements 0.71151
published_at 2026-04-09T12:55:00Z
7
value 0.00662
scoring_system epss
scoring_elements 0.71175
published_at 2026-04-11T12:55:00Z
8
value 0.00662
scoring_system epss
scoring_elements 0.7116
published_at 2026-04-12T12:55:00Z
9
value 0.00662
scoring_system epss
scoring_elements 0.71143
published_at 2026-04-13T12:55:00Z
10
value 0.00662
scoring_system epss
scoring_elements 0.71189
published_at 2026-04-16T12:55:00Z
11
value 0.00662
scoring_system epss
scoring_elements 0.71196
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22931
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/1178337
reference_id 1178337
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-11T21:01:01Z/
url https://hackerone.com/reports/1178337
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1993019
reference_id 1993019
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1993019
5
reference_url https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases/
reference_id aug-2021-security-releases
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-11T21:01:01Z/
url https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases/
6
reference_url https://security.archlinux.org/AVG-2286
reference_id AVG-2286
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2286
7
reference_url https://security.gentoo.org/glsa/202401-02
reference_id GLSA-202401-02
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-11T21:01:01Z/
url https://security.gentoo.org/glsa/202401-02
8
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
9
reference_url https://security.netapp.com/advisory/ntap-20210923-0001/
reference_id ntap-20210923-0001
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-11T21:01:01Z/
url https://security.netapp.com/advisory/ntap-20210923-0001/
10
reference_url https://security.netapp.com/advisory/ntap-20211022-0003/
reference_id ntap-20211022-0003
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-01-11T21:01:01Z/
url https://security.netapp.com/advisory/ntap-20211022-0003/
11
reference_url https://access.redhat.com/errata/RHSA-2021:3280
reference_id RHSA-2021:3280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3280
12
reference_url https://access.redhat.com/errata/RHSA-2021:3281
reference_id RHSA-2021:3281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3281
13
reference_url https://access.redhat.com/errata/RHSA-2021:3623
reference_id RHSA-2021:3623
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3623
14
reference_url https://access.redhat.com/errata/RHSA-2021:3638
reference_id RHSA-2021:3638
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3638
15
reference_url https://access.redhat.com/errata/RHSA-2021:3639
reference_id RHSA-2021:3639
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3639
16
reference_url https://access.redhat.com/errata/RHSA-2021:3666
reference_id RHSA-2021:3666
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3666
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2021-22931
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ap4u-dkwx-1kb3
16
url VCID-apbs-8ge7-dyg3
vulnerability_id VCID-apbs-8ge7-dyg3
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21896.json
reference_id
reference_type
scores
0
value 7.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21896.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-21896
reference_id
reference_type
scores
0
value 0.01642
scoring_system epss
scoring_elements 0.81991
published_at 2026-04-21T12:55:00Z
1
value 0.01642
scoring_system epss
scoring_elements 0.81943
published_at 2026-04-08T12:55:00Z
2
value 0.01642
scoring_system epss
scoring_elements 0.81951
published_at 2026-04-09T12:55:00Z
3
value 0.01642
scoring_system epss
scoring_elements 0.81971
published_at 2026-04-11T12:55:00Z
4
value 0.01642
scoring_system epss
scoring_elements 0.81959
published_at 2026-04-12T12:55:00Z
5
value 0.01642
scoring_system epss
scoring_elements 0.81954
published_at 2026-04-13T12:55:00Z
6
value 0.01642
scoring_system epss
scoring_elements 0.81989
published_at 2026-04-16T12:55:00Z
7
value 0.01642
scoring_system epss
scoring_elements 0.8199
published_at 2026-04-18T12:55:00Z
8
value 0.01642
scoring_system epss
scoring_elements 0.81898
published_at 2026-04-02T12:55:00Z
9
value 0.01642
scoring_system epss
scoring_elements 0.81921
published_at 2026-04-04T12:55:00Z
10
value 0.01642
scoring_system epss
scoring_elements 0.81917
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-21896
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2218653
reference_id 2218653
reference_type
scores
0
value 7.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N/CR:M/IR:M/AR:M
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-03-12T04:00:41Z/
url https://hackerone.com/reports/2218653
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2265717
reference_id 2265717
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2265717
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://security.netapp.com/advisory/ntap-20240329-0002/
reference_id ntap-20240329-0002
reference_type
scores
0
value 7.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N/CR:M/IR:M/AR:M
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-03-12T04:00:41Z/
url https://security.netapp.com/advisory/ntap-20240329-0002/
7
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
8
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-21896
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-apbs-8ge7-dyg3
17
url VCID-b1vd-c8xt-dqc6
vulnerability_id VCID-b1vd-c8xt-dqc6
summary Bypass incomplete fix of CVE-2024-27980, that arises from improper handling of batch files with all possible extensions on Windows via child_process.spawn / child_process.spawnSync. A malicious command line argument can inject arbitrary commands and achieve code execution even if the shell option is not enabled.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-36138
reference_id
reference_type
scores
0
value 0.00261
scoring_system epss
scoring_elements 0.49443
published_at 2026-04-21T12:55:00Z
1
value 0.00261
scoring_system epss
scoring_elements 0.49476
published_at 2026-04-16T12:55:00Z
2
value 0.00261
scoring_system epss
scoring_elements 0.49473
published_at 2026-04-18T12:55:00Z
3
value 0.00261
scoring_system epss
scoring_elements 0.49409
published_at 2026-04-02T12:55:00Z
4
value 0.00261
scoring_system epss
scoring_elements 0.49436
published_at 2026-04-04T12:55:00Z
5
value 0.00261
scoring_system epss
scoring_elements 0.49389
published_at 2026-04-07T12:55:00Z
6
value 0.00261
scoring_system epss
scoring_elements 0.49444
published_at 2026-04-08T12:55:00Z
7
value 0.00261
scoring_system epss
scoring_elements 0.49439
published_at 2026-04-09T12:55:00Z
8
value 0.00261
scoring_system epss
scoring_elements 0.49457
published_at 2026-04-11T12:55:00Z
9
value 0.00261
scoring_system epss
scoring_elements 0.49428
published_at 2026-04-12T12:55:00Z
10
value 0.00261
scoring_system epss
scoring_elements 0.4943
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-36138
1
reference_url https://nodejs.org/en/blog/vulnerability/july-2024-security-releases
reference_id july-2024-security-releases
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-09T17:53:28Z/
url https://nodejs.org/en/blog/vulnerability/july-2024-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-36138
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b1vd-c8xt-dqc6
18
url VCID-b7hq-5yyx-tuhs
vulnerability_id VCID-b7hq-5yyx-tuhs
summary Node.js before 16.4.1, 14.17.2, and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically, improper configuration of permissions in the installation directory allows an attacker to perform two different escalation attacks: PATH and DLL hijacking.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-22921
reference_id
reference_type
scores
0
value 0.00527
scoring_system epss
scoring_elements 0.67148
published_at 2026-04-21T12:55:00Z
1
value 0.00527
scoring_system epss
scoring_elements 0.67048
published_at 2026-04-01T12:55:00Z
2
value 0.00527
scoring_system epss
scoring_elements 0.67085
published_at 2026-04-02T12:55:00Z
3
value 0.00527
scoring_system epss
scoring_elements 0.67109
published_at 2026-04-04T12:55:00Z
4
value 0.00527
scoring_system epss
scoring_elements 0.67083
published_at 2026-04-07T12:55:00Z
5
value 0.00527
scoring_system epss
scoring_elements 0.67133
published_at 2026-04-08T12:55:00Z
6
value 0.00527
scoring_system epss
scoring_elements 0.67145
published_at 2026-04-09T12:55:00Z
7
value 0.00527
scoring_system epss
scoring_elements 0.67164
published_at 2026-04-11T12:55:00Z
8
value 0.00527
scoring_system epss
scoring_elements 0.6715
published_at 2026-04-12T12:55:00Z
9
value 0.00527
scoring_system epss
scoring_elements 0.67119
published_at 2026-04-13T12:55:00Z
10
value 0.00527
scoring_system epss
scoring_elements 0.67152
published_at 2026-04-16T12:55:00Z
11
value 0.00527
scoring_system epss
scoring_elements 0.67167
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-22921
1
reference_url https://security.archlinux.org/AVG-2130
reference_id AVG-2130
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2130
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2021-22921
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b7hq-5yyx-tuhs
19
url VCID-cjrh-xgy5-63ga
vulnerability_id VCID-cjrh-xgy5-63ga
summary 
An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting Windows device names like CON, PRN, and AUX. 

This vulnerability affects Windows users of `path.join` API.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27210
reference_id
reference_type
scores
0
value 0.03967
scoring_system epss
scoring_elements 0.88393
published_at 2026-04-16T12:55:00Z
1
value 0.03967
scoring_system epss
scoring_elements 0.88389
published_at 2026-04-21T12:55:00Z
2
value 0.07107
scoring_system epss
scoring_elements 0.91498
published_at 2026-04-02T12:55:00Z
3
value 0.09232
scoring_system epss
scoring_elements 0.92708
published_at 2026-04-08T12:55:00Z
4
value 0.09232
scoring_system epss
scoring_elements 0.92699
published_at 2026-04-04T12:55:00Z
5
value 0.09232
scoring_system epss
scoring_elements 0.92698
published_at 2026-04-07T12:55:00Z
6
value 0.09232
scoring_system epss
scoring_elements 0.92712
published_at 2026-04-09T12:55:00Z
7
value 0.09232
scoring_system epss
scoring_elements 0.92718
published_at 2026-04-11T12:55:00Z
8
value 0.09232
scoring_system epss
scoring_elements 0.92717
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27210
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/nodejs/remote/52369.py
reference_id CVE-2025-27210
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/nodejs/remote/52369.py
3
reference_url https://nodejs.org/en/blog/vulnerability/july-2025-security-releases
reference_id july-2025-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-21T17:11:02Z/
url https://nodejs.org/en/blog/vulnerability/july-2025-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-27210
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cjrh-xgy5-63ga
20
url VCID-ec66-gwvw-kucs
vulnerability_id VCID-ec66-gwvw-kucs
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30587.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30587.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30587
reference_id
reference_type
scores
0
value 0.00014
scoring_system epss
scoring_elements 0.02564
published_at 2026-04-02T12:55:00Z
1
value 0.00014
scoring_system epss
scoring_elements 0.02681
published_at 2026-04-21T12:55:00Z
2
value 0.00014
scoring_system epss
scoring_elements 0.02562
published_at 2026-04-16T12:55:00Z
3
value 0.00014
scoring_system epss
scoring_elements 0.02571
published_at 2026-04-18T12:55:00Z
4
value 0.00014
scoring_system epss
scoring_elements 0.02578
published_at 2026-04-04T12:55:00Z
5
value 0.00014
scoring_system epss
scoring_elements 0.02582
published_at 2026-04-07T12:55:00Z
6
value 0.00014
scoring_system epss
scoring_elements 0.02587
published_at 2026-04-08T12:55:00Z
7
value 0.00014
scoring_system epss
scoring_elements 0.02608
published_at 2026-04-09T12:55:00Z
8
value 0.00014
scoring_system epss
scoring_elements 0.02591
published_at 2026-04-11T12:55:00Z
9
value 0.00014
scoring_system epss
scoring_elements 0.02579
published_at 2026-04-12T12:55:00Z
10
value 0.00014
scoring_system epss
scoring_elements 0.02577
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30587
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219831
reference_id 2219831
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219831
3
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
4
reference_url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
reference_id june-2023-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T18:23:12Z/
url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30587
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ec66-gwvw-kucs
21
url VCID-enz6-qdn6-dkgm
vulnerability_id VCID-enz6-qdn6-dkgm
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38552.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38552.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-38552
reference_id
reference_type
scores
0
value 0.00397
scoring_system epss
scoring_elements 0.6041
published_at 2026-04-02T12:55:00Z
1
value 0.00397
scoring_system epss
scoring_elements 0.60497
published_at 2026-04-21T12:55:00Z
2
value 0.00397
scoring_system epss
scoring_elements 0.60437
published_at 2026-04-04T12:55:00Z
3
value 0.00397
scoring_system epss
scoring_elements 0.60405
published_at 2026-04-07T12:55:00Z
4
value 0.00397
scoring_system epss
scoring_elements 0.60454
published_at 2026-04-08T12:55:00Z
5
value 0.00397
scoring_system epss
scoring_elements 0.6047
published_at 2026-04-09T12:55:00Z
6
value 0.00397
scoring_system epss
scoring_elements 0.6049
published_at 2026-04-11T12:55:00Z
7
value 0.00397
scoring_system epss
scoring_elements 0.60477
published_at 2026-04-12T12:55:00Z
8
value 0.00397
scoring_system epss
scoring_elements 0.60457
published_at 2026-04-13T12:55:00Z
9
value 0.00397
scoring_system epss
scoring_elements 0.60499
published_at 2026-04-16T12:55:00Z
10
value 0.00397
scoring_system epss
scoring_elements 0.60507
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-38552
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054892
reference_id 1054892
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054892
4
reference_url https://hackerone.com/reports/2094235
reference_id 2094235
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://hackerone.com/reports/2094235
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2244415
reference_id 2244415
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2244415
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/
reference_id 3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/
reference_id E72T67UPDRXHIDLO3OROR25YAMN4GGW5
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/
reference_id FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/
9
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/
reference_id HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/
reference_id LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/
12
reference_url https://security.netapp.com/advisory/ntap-20231116-0013/
reference_id ntap-20231116-0013
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://security.netapp.com/advisory/ntap-20231116-0013/
13
reference_url https://access.redhat.com/errata/RHSA-2023:5849
reference_id RHSA-2023:5849
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5849
14
reference_url https://access.redhat.com/errata/RHSA-2023:5869
reference_id RHSA-2023:5869
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5869
15
reference_url https://access.redhat.com/errata/RHSA-2023:7205
reference_id RHSA-2023:7205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7205
16
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/
reference_id X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-02-20T15:14:02Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-38552
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-enz6-qdn6-dkgm
22
url VCID-fetp-hvhq-dube
vulnerability_id VCID-fetp-hvhq-dube
summary Node.js: Node.js: Denial of Service via malformed Internationalized Domain Name processing
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21712.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21712.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21712
reference_id
reference_type
scores
0
value 0.00012
scoring_system epss
scoring_elements 0.01719
published_at 2026-04-02T12:55:00Z
1
value 0.00014
scoring_system epss
scoring_elements 0.02676
published_at 2026-04-04T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.02893
published_at 2026-04-21T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.02807
published_at 2026-04-11T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.02788
published_at 2026-04-12T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.02784
published_at 2026-04-13T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.02769
published_at 2026-04-16T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.02781
published_at 2026-04-18T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.02814
published_at 2026-04-07T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.02817
published_at 2026-04-08T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.02838
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21712
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453037
reference_id 2453037
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453037
4
reference_url https://hackerone.com/reports/3546390
reference_id 3546390
reference_type
scores
0
value 5.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T15:52:17Z/
url https://hackerone.com/reports/3546390
5
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 5.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T15:52:17Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
7
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
8
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2026-21712
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fetp-hvhq-dube
23
url VCID-g28p-7shw-n3bn
vulnerability_id VCID-g28p-7shw-n3bn
summary Node.js 8.5.0 before 8.6.0 allows remote attackers to access unintended files, because a change to ".." handling was incompatible with the pathname validation used by unspecified community modules.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-14849
reference_id
reference_type
scores
0
value 0.90232
scoring_system epss
scoring_elements 0.99597
published_at 2026-04-21T12:55:00Z
1
value 0.90232
scoring_system epss
scoring_elements 0.99596
published_at 2026-04-18T12:55:00Z
2
value 0.90232
scoring_system epss
scoring_elements 0.99591
published_at 2026-04-02T12:55:00Z
3
value 0.90232
scoring_system epss
scoring_elements 0.99592
published_at 2026-04-04T12:55:00Z
4
value 0.90232
scoring_system epss
scoring_elements 0.99593
published_at 2026-04-07T12:55:00Z
5
value 0.90232
scoring_system epss
scoring_elements 0.99594
published_at 2026-04-11T12:55:00Z
6
value 0.90232
scoring_system epss
scoring_elements 0.99595
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-14849
1
reference_url https://nodejs.org/en/blog/vulnerability/september-2017-path-validation/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/vulnerability/september-2017-path-validation/
2
reference_url https://twitter.com/nodejs/status/913131152868876288
reference_id
reference_type
scores
url https://twitter.com/nodejs/status/913131152868876288
3
reference_url http://www.securityfocus.com/bid/101056
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/101056
4
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-14849
reference_id CVE-2017-14849
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:N/A:N
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2017-14849
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2017-14849
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g28p-7shw-n3bn
24
url VCID-g5wj-ffk1-7bg7
vulnerability_id VCID-g5wj-ffk1-7bg7
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30586.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30586.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30586
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13467
published_at 2026-04-02T12:55:00Z
1
value 0.00044
scoring_system epss
scoring_elements 0.13336
published_at 2026-04-21T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.13395
published_at 2026-04-12T12:55:00Z
3
value 0.00044
scoring_system epss
scoring_elements 0.13349
published_at 2026-04-13T12:55:00Z
4
value 0.00044
scoring_system epss
scoring_elements 0.13256
published_at 2026-04-16T12:55:00Z
5
value 0.00044
scoring_system epss
scoring_elements 0.13255
published_at 2026-04-18T12:55:00Z
6
value 0.00044
scoring_system epss
scoring_elements 0.13529
published_at 2026-04-04T12:55:00Z
7
value 0.00044
scoring_system epss
scoring_elements 0.13324
published_at 2026-04-07T12:55:00Z
8
value 0.00044
scoring_system epss
scoring_elements 0.13406
published_at 2026-04-08T12:55:00Z
9
value 0.00044
scoring_system epss
scoring_elements 0.13456
published_at 2026-04-09T12:55:00Z
10
value 0.00044
scoring_system epss
scoring_elements 0.1343
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30586
2
reference_url https://hackerone.com/reports/1954535
reference_id 1954535
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T18:27:16Z/
url https://hackerone.com/reports/1954535
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219837
reference_id 2219837
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219837
4
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
5
reference_url https://security.netapp.com/advisory/ntap-20230803-0008/
reference_id ntap-20230803-0008
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-27T18:27:16Z/
url https://security.netapp.com/advisory/ntap-20230803-0008/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30586
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g5wj-ffk1-7bg7
25
url VCID-jbph-d393-byd4
vulnerability_id VCID-jbph-d393-byd4
summary nodejs: privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30585.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30585.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30585
reference_id
reference_type
scores
0
value 0.02122
scoring_system epss
scoring_elements 0.84091
published_at 2026-04-02T12:55:00Z
1
value 0.02122
scoring_system epss
scoring_elements 0.84109
published_at 2026-04-04T12:55:00Z
2
value 0.02122
scoring_system epss
scoring_elements 0.8411
published_at 2026-04-07T12:55:00Z
3
value 0.02122
scoring_system epss
scoring_elements 0.84133
published_at 2026-04-08T12:55:00Z
4
value 0.02122
scoring_system epss
scoring_elements 0.84139
published_at 2026-04-09T12:55:00Z
5
value 0.02122
scoring_system epss
scoring_elements 0.84156
published_at 2026-04-11T12:55:00Z
6
value 0.02122
scoring_system epss
scoring_elements 0.84151
published_at 2026-04-12T12:55:00Z
7
value 0.02122
scoring_system epss
scoring_elements 0.84147
published_at 2026-04-13T12:55:00Z
8
value 0.02122
scoring_system epss
scoring_elements 0.84169
published_at 2026-04-16T12:55:00Z
9
value 0.02122
scoring_system epss
scoring_elements 0.8417
published_at 2026-04-18T12:55:00Z
10
value 0.02122
scoring_system epss
scoring_elements 0.84175
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30585
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219835
reference_id 2219835
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219835
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30585
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jbph-d393-byd4
26
url VCID-jbws-qjq3-qbhq
vulnerability_id VCID-jbws-qjq3-qbhq
summary nodejs: Nodejs network segmentation bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21636.json
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21636.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21636
reference_id
reference_type
scores
0
value 0.00023
scoring_system epss
scoring_elements 0.06241
published_at 2026-04-02T12:55:00Z
1
value 0.00023
scoring_system epss
scoring_elements 0.06424
published_at 2026-04-21T12:55:00Z
2
value 0.00023
scoring_system epss
scoring_elements 0.06313
published_at 2026-04-13T12:55:00Z
3
value 0.00023
scoring_system epss
scoring_elements 0.06264
published_at 2026-04-16T12:55:00Z
4
value 0.00023
scoring_system epss
scoring_elements 0.06277
published_at 2026-04-18T12:55:00Z
5
value 0.00023
scoring_system epss
scoring_elements 0.06272
published_at 2026-04-04T12:55:00Z
6
value 0.00023
scoring_system epss
scoring_elements 0.06251
published_at 2026-04-07T12:55:00Z
7
value 0.00023
scoring_system epss
scoring_elements 0.06297
published_at 2026-04-08T12:55:00Z
8
value 0.00023
scoring_system epss
scoring_elements 0.06338
published_at 2026-04-09T12:55:00Z
9
value 0.00023
scoring_system epss
scoring_elements 0.0633
published_at 2026-04-11T12:55:00Z
10
value 0.00023
scoring_system epss
scoring_elements 0.06324
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21636
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431342
reference_id 2431342
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431342
4
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-01-21T18:38:13Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
5
reference_url https://access.redhat.com/errata/RHSA-2026:6402
reference_id RHSA-2026:6402
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6402
6
reference_url https://access.redhat.com/errata/RHSA-2026:6431
reference_id RHSA-2026:6431
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6431
7
reference_url https://access.redhat.com/errata/RHSA-2026:7386
reference_id RHSA-2026:7386
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7386
8
reference_url https://access.redhat.com/errata/RHSA-2026:7387
reference_id RHSA-2026:7387
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7387
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2026-21636
risk_score 2.6
exploitability 0.5
weighted_severity 5.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jbws-qjq3-qbhq
27
url VCID-k4cj-47gd-s7ck
vulnerability_id VCID-k4cj-47gd-s7ck
summary nodejs: Nodejs memory leak
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59464.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59464.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-59464
reference_id
reference_type
scores
0
value 0.00053
scoring_system epss
scoring_elements 0.16583
published_at 2026-04-02T12:55:00Z
1
value 0.00053
scoring_system epss
scoring_elements 0.16466
published_at 2026-04-21T12:55:00Z
2
value 0.00053
scoring_system epss
scoring_elements 0.16468
published_at 2026-04-13T12:55:00Z
3
value 0.00053
scoring_system epss
scoring_elements 0.16409
published_at 2026-04-16T12:55:00Z
4
value 0.00053
scoring_system epss
scoring_elements 0.16429
published_at 2026-04-18T12:55:00Z
5
value 0.00053
scoring_system epss
scoring_elements 0.16645
published_at 2026-04-04T12:55:00Z
6
value 0.00053
scoring_system epss
scoring_elements 0.16445
published_at 2026-04-07T12:55:00Z
7
value 0.00053
scoring_system epss
scoring_elements 0.16531
published_at 2026-04-08T12:55:00Z
8
value 0.00053
scoring_system epss
scoring_elements 0.16585
published_at 2026-04-09T12:55:00Z
9
value 0.00053
scoring_system epss
scoring_elements 0.16566
published_at 2026-04-11T12:55:00Z
10
value 0.00053
scoring_system epss
scoring_elements 0.16526
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-59464
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431344
reference_id 2431344
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431344
4
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T20:40:07Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
5
reference_url https://access.redhat.com/errata/RHSA-2026:6402
reference_id RHSA-2026:6402
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6402
6
reference_url https://access.redhat.com/errata/RHSA-2026:6431
reference_id RHSA-2026:6431
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6431
7
reference_url https://access.redhat.com/errata/RHSA-2026:7378
reference_id RHSA-2026:7378
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7378
8
reference_url https://access.redhat.com/errata/RHSA-2026:7386
reference_id RHSA-2026:7386
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7386
9
reference_url https://access.redhat.com/errata/RHSA-2026:7387
reference_id RHSA-2026:7387
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7387
10
reference_url https://access.redhat.com/errata/RHSA-2026:7657
reference_id RHSA-2026:7657
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7657
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-59464
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k4cj-47gd-s7ck
28
url VCID-krft-297e-qfdw
vulnerability_id VCID-krft-297e-qfdw
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36137.json
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-36137.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-36137
reference_id
reference_type
scores
0
value 0.0008
scoring_system epss
scoring_elements 0.2355
published_at 2026-04-18T12:55:00Z
1
value 0.0008
scoring_system epss
scoring_elements 0.23557
published_at 2026-04-16T12:55:00Z
2
value 0.00082
scoring_system epss
scoring_elements 0.24004
published_at 2026-04-07T12:55:00Z
3
value 0.00082
scoring_system epss
scoring_elements 0.24071
published_at 2026-04-08T12:55:00Z
4
value 0.00082
scoring_system epss
scoring_elements 0.2418
published_at 2026-04-02T12:55:00Z
5
value 0.00082
scoring_system epss
scoring_elements 0.24218
published_at 2026-04-04T12:55:00Z
6
value 0.00082
scoring_system epss
scoring_elements 0.24117
published_at 2026-04-09T12:55:00Z
7
value 0.00082
scoring_system epss
scoring_elements 0.24133
published_at 2026-04-11T12:55:00Z
8
value 0.00082
scoring_system epss
scoring_elements 0.24092
published_at 2026-04-12T12:55:00Z
9
value 0.00082
scoring_system epss
scoring_elements 0.24035
published_at 2026-04-13T12:55:00Z
10
value 0.00084
scoring_system epss
scoring_elements 0.24371
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-36137
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2299281
reference_id 2299281
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2299281
4
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
5
reference_url https://nodejs.org/en/blog/vulnerability/july-2024-security-releases
reference_id july-2024-security-releases
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-09T18:06:27Z/
url https://nodejs.org/en/blog/vulnerability/july-2024-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2024:5814
reference_id RHSA-2024:5814
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5814
7
reference_url https://access.redhat.com/errata/RHSA-2024:5815
reference_id RHSA-2024:5815
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5815
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.15.1%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-36137
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krft-297e-qfdw
29
url VCID-kvmm-gh2f-zqau
vulnerability_id VCID-kvmm-gh2f-zqau
summary nodejs: Node.js Rapidhash HashDoS Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27209.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27209.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-27209
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.05749
published_at 2026-04-02T12:55:00Z
1
value 0.00035
scoring_system epss
scoring_elements 0.10307
published_at 2026-04-08T12:55:00Z
2
value 0.00035
scoring_system epss
scoring_elements 0.10335
published_at 2026-04-04T12:55:00Z
3
value 0.00035
scoring_system epss
scoring_elements 0.10234
published_at 2026-04-07T12:55:00Z
4
value 0.00035
scoring_system epss
scoring_elements 0.10369
published_at 2026-04-09T12:55:00Z
5
value 0.00035
scoring_system epss
scoring_elements 0.104
published_at 2026-04-11T12:55:00Z
6
value 0.00035
scoring_system epss
scoring_elements 0.10358
published_at 2026-04-12T12:55:00Z
7
value 0.00046
scoring_system epss
scoring_elements 0.14188
published_at 2026-04-13T12:55:00Z
8
value 0.00046
scoring_system epss
scoring_elements 0.14078
published_at 2026-04-18T12:55:00Z
9
value 0.00046
scoring_system epss
scoring_elements 0.14155
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-27209
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2382040
reference_id 2382040
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2382040
4
reference_url https://nodejs.org/en/blog/vulnerability/july-2025-security-releases
reference_id july-2025-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-21T17:14:28Z/
url https://nodejs.org/en/blog/vulnerability/july-2025-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-27209
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kvmm-gh2f-zqau
30
url VCID-mqcy-2run-93d6
vulnerability_id VCID-mqcy-2run-93d6
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21892.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21892.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-21892
reference_id
reference_type
scores
0
value 0.00448
scoring_system epss
scoring_elements 0.63592
published_at 2026-04-21T12:55:00Z
1
value 0.00448
scoring_system epss
scoring_elements 0.63564
published_at 2026-04-13T12:55:00Z
2
value 0.00448
scoring_system epss
scoring_elements 0.63529
published_at 2026-04-07T12:55:00Z
3
value 0.00448
scoring_system epss
scoring_elements 0.63581
published_at 2026-04-08T12:55:00Z
4
value 0.00448
scoring_system epss
scoring_elements 0.63598
published_at 2026-04-12T12:55:00Z
5
value 0.00448
scoring_system epss
scoring_elements 0.63613
published_at 2026-04-11T12:55:00Z
6
value 0.00448
scoring_system epss
scoring_elements 0.636
published_at 2026-04-16T12:55:00Z
7
value 0.00448
scoring_system epss
scoring_elements 0.63609
published_at 2026-04-18T12:55:00Z
8
value 0.00448
scoring_system epss
scoring_elements 0.63536
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-21892
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
reference_id 1064055
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
4
reference_url https://hackerone.com/reports/2237545
reference_id 2237545
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-03-12T04:00:40Z/
url https://hackerone.com/reports/2237545
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264582
reference_id 2264582
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2264582
6
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
7
reference_url https://security.netapp.com/advisory/ntap-20240322-0003/
reference_id ntap-20240322-0003
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-03-12T04:00:40Z/
url https://security.netapp.com/advisory/ntap-20240322-0003/
8
reference_url https://access.redhat.com/errata/RHSA-2024:1503
reference_id RHSA-2024:1503
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1503
9
reference_url https://access.redhat.com/errata/RHSA-2024:1510
reference_id RHSA-2024:1510
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1510
10
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
11
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
12
reference_url https://access.redhat.com/errata/RHSA-2024:1880
reference_id RHSA-2024:1880
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1880
13
reference_url https://access.redhat.com/errata/RHSA-2024:1932
reference_id RHSA-2024:1932
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1932
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-21892
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mqcy-2run-93d6
31
url VCID-p31t-nxwe-yyf2
vulnerability_id VCID-p31t-nxwe-yyf2
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32558.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32558.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-32558
reference_id
reference_type
scores
0
value 0.00193
scoring_system epss
scoring_elements 0.41223
published_at 2026-04-02T12:55:00Z
1
value 0.00193
scoring_system epss
scoring_elements 0.41253
published_at 2026-04-04T12:55:00Z
2
value 0.00193
scoring_system epss
scoring_elements 0.41179
published_at 2026-04-07T12:55:00Z
3
value 0.00193
scoring_system epss
scoring_elements 0.41227
published_at 2026-04-08T12:55:00Z
4
value 0.00193
scoring_system epss
scoring_elements 0.41236
published_at 2026-04-09T12:55:00Z
5
value 0.00193
scoring_system epss
scoring_elements 0.41258
published_at 2026-04-11T12:55:00Z
6
value 0.00193
scoring_system epss
scoring_elements 0.41226
published_at 2026-04-18T12:55:00Z
7
value 0.00193
scoring_system epss
scoring_elements 0.41212
published_at 2026-04-13T12:55:00Z
8
value 0.00193
scoring_system epss
scoring_elements 0.41255
published_at 2026-04-16T12:55:00Z
9
value 0.00193
scoring_system epss
scoring_elements 0.41153
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-32558
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2230952
reference_id 2230952
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2230952
4
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-32558
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p31t-nxwe-yyf2
32
url VCID-p9sg-8byk-eydy
vulnerability_id VCID-p9sg-8byk-eydy
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-37372.json
reference_id
reference_type
scores
0
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-37372.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-37372
reference_id
reference_type
scores
0
value 0.00049
scoring_system epss
scoring_elements 0.1503
published_at 2026-04-21T12:55:00Z
1
value 0.00049
scoring_system epss
scoring_elements 0.15134
published_at 2026-04-12T12:55:00Z
2
value 0.00049
scoring_system epss
scoring_elements 0.1507
published_at 2026-04-13T12:55:00Z
3
value 0.00049
scoring_system epss
scoring_elements 0.14969
published_at 2026-04-16T12:55:00Z
4
value 0.00049
scoring_system epss
scoring_elements 0.14978
published_at 2026-04-18T12:55:00Z
5
value 0.00049
scoring_system epss
scoring_elements 0.15193
published_at 2026-04-02T12:55:00Z
6
value 0.00049
scoring_system epss
scoring_elements 0.15261
published_at 2026-04-04T12:55:00Z
7
value 0.00049
scoring_system epss
scoring_elements 0.15064
published_at 2026-04-07T12:55:00Z
8
value 0.00049
scoring_system epss
scoring_elements 0.15152
published_at 2026-04-08T12:55:00Z
9
value 0.00049
scoring_system epss
scoring_elements 0.15203
published_at 2026-04-09T12:55:00Z
10
value 0.00049
scoring_system epss
scoring_elements 0.15172
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-37372
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2336663
reference_id 2336663
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2336663
3
reference_url http://www.openwall.com/lists/oss-security/2024/07/19/3
reference_id 3
reference_type
scores
0
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T21:37:14Z/
url http://www.openwall.com/lists/oss-security/2024/07/19/3
4
reference_url http://www.openwall.com/lists/oss-security/2024/07/11/6
reference_id 6
reference_type
scores
0
value 3.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T21:37:14Z/
url http://www.openwall.com/lists/oss-security/2024/07/11/6
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-37372
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p9sg-8byk-eydy
33
url VCID-pd4q-4b15-gqey
vulnerability_id VCID-pd4q-4b15-gqey
summary 
A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows. As a result, although Node.js assumes a relative path, it actually refers to the root directory.

On Windows, a path that does not start with the file separator is treated as relative to the current directory. 

This vulnerability affects Windows users of `path.join` API.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-23084
reference_id
reference_type
scores
0
value 0.01289
scoring_system epss
scoring_elements 0.79681
published_at 2026-04-21T12:55:00Z
1
value 0.01289
scoring_system epss
scoring_elements 0.79605
published_at 2026-04-02T12:55:00Z
2
value 0.01289
scoring_system epss
scoring_elements 0.79655
published_at 2026-04-12T12:55:00Z
3
value 0.01289
scoring_system epss
scoring_elements 0.79648
published_at 2026-04-13T12:55:00Z
4
value 0.01289
scoring_system epss
scoring_elements 0.79677
published_at 2026-04-18T12:55:00Z
5
value 0.01289
scoring_system epss
scoring_elements 0.79627
published_at 2026-04-04T12:55:00Z
6
value 0.01289
scoring_system epss
scoring_elements 0.79614
published_at 2026-04-07T12:55:00Z
7
value 0.01289
scoring_system epss
scoring_elements 0.79642
published_at 2026-04-08T12:55:00Z
8
value 0.01289
scoring_system epss
scoring_elements 0.7965
published_at 2026-04-09T12:55:00Z
9
value 0.01289
scoring_system epss
scoring_elements 0.79671
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-23084
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
2
reference_url https://nodejs.org/en/blog/vulnerability/january-2025-security-releases
reference_id january-2025-security-releases
reference_type
scores
0
value 5.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-28T15:07:59Z/
url https://nodejs.org/en/blog/vulnerability/january-2025-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-23084
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pd4q-4b15-gqey
34
url VCID-pwe6-zwyr-nqhy
vulnerability_id VCID-pwe6-zwyr-nqhy
summary nodejs: DoS via specific windowBits value
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14919.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14919.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-14919
reference_id
reference_type
scores
0
value 0.00784
scoring_system epss
scoring_elements 0.73799
published_at 2026-04-21T12:55:00Z
1
value 0.00784
scoring_system epss
scoring_elements 0.73763
published_at 2026-04-09T12:55:00Z
2
value 0.00784
scoring_system epss
scoring_elements 0.73786
published_at 2026-04-11T12:55:00Z
3
value 0.00784
scoring_system epss
scoring_elements 0.73767
published_at 2026-04-12T12:55:00Z
4
value 0.00784
scoring_system epss
scoring_elements 0.73759
published_at 2026-04-13T12:55:00Z
5
value 0.00784
scoring_system epss
scoring_elements 0.738
published_at 2026-04-16T12:55:00Z
6
value 0.00784
scoring_system epss
scoring_elements 0.73808
published_at 2026-04-18T12:55:00Z
7
value 0.00784
scoring_system epss
scoring_elements 0.73751
published_at 2026-04-08T12:55:00Z
8
value 0.01045
scoring_system epss
scoring_elements 0.77436
published_at 2026-04-02T12:55:00Z
9
value 0.01045
scoring_system epss
scoring_elements 0.77462
published_at 2026-04-04T12:55:00Z
10
value 0.01045
scoring_system epss
scoring_elements 0.77441
published_at 2026-04-07T12:55:00Z
11
value 0.01045
scoring_system epss
scoring_elements 0.7743
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-14919
2
reference_url https://nodejs.org/en/blog/release/v4.8.5/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/release/v4.8.5/
3
reference_url https://nodejs.org/en/blog/release/v6.11.5/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/release/v6.11.5/
4
reference_url https://nodejs.org/en/blog/release/v8.8.0/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/release/v8.8.0/
5
reference_url https://nodejs.org/en/blog/vulnerability/oct-2017-dos/
reference_id
reference_type
scores
url https://nodejs.org/en/blog/vulnerability/oct-2017-dos/
6
reference_url http://www.securityfocus.com/bid/101881
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/101881
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1516175
reference_id 1516175
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1516175
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:4.8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.2:*:*:*:*:*:*:*
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:4.8.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.3:*:*:*:*:*:*:*
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:4.8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:4.8.4:*:*:*:*:*:*:*
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.10.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.10.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.10.2:*:*:*:*:*:*:*
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.10.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.10.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.10.3:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.11.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.0:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.11.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.1:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.11.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.2:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.11.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.3:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:6.11.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:6.11.4:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.0.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.1.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.1.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.1:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.1.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.2:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.1.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.3:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.1.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.1.4:*:*:*:*:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.2.0:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.2.1:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.3.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.3.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.3.0:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.4.0:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.5.0:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.6.0:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:nodejs:node.js:8.7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:8.7.0:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-14919
reference_id CVE-2017-14919
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-14919
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2017-14919
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pwe6-zwyr-nqhy
35
url VCID-q75s-43sx-4kbg
vulnerability_id VCID-q75s-43sx-4kbg
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30588.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30588.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30588
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.0854
published_at 2026-04-02T12:55:00Z
1
value 0.0003
scoring_system epss
scoring_elements 0.08594
published_at 2026-04-04T12:55:00Z
2
value 0.0003
scoring_system epss
scoring_elements 0.08512
published_at 2026-04-07T12:55:00Z
3
value 0.0003
scoring_system epss
scoring_elements 0.08585
published_at 2026-04-08T12:55:00Z
4
value 0.0003
scoring_system epss
scoring_elements 0.08605
published_at 2026-04-09T12:55:00Z
5
value 0.0003
scoring_system epss
scoring_elements 0.08602
published_at 2026-04-11T12:55:00Z
6
value 0.0003
scoring_system epss
scoring_elements 0.08582
published_at 2026-04-12T12:55:00Z
7
value 0.0003
scoring_system epss
scoring_elements 0.08566
published_at 2026-04-13T12:55:00Z
8
value 0.0003
scoring_system epss
scoring_elements 0.08458
published_at 2026-04-16T12:55:00Z
9
value 0.0003
scoring_system epss
scoring_elements 0.08445
published_at 2026-04-18T12:55:00Z
10
value 0.0003
scoring_system epss
scoring_elements 0.086
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30588
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
reference_id 1039990
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219838
reference_id 2219838
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219838
5
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
6
reference_url https://access.redhat.com/errata/RHSA-2023:4330
reference_id RHSA-2023:4330
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4330
7
reference_url https://access.redhat.com/errata/RHSA-2023:4331
reference_id RHSA-2023:4331
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4331
8
reference_url https://access.redhat.com/errata/RHSA-2023:4536
reference_id RHSA-2023:4536
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4536
9
reference_url https://access.redhat.com/errata/RHSA-2023:4537
reference_id RHSA-2023:4537
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4537
10
reference_url https://access.redhat.com/errata/RHSA-2023:5361
reference_id RHSA-2023:5361
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5361
11
reference_url https://access.redhat.com/errata/RHSA-2023:5533
reference_id RHSA-2023:5533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5533
12
reference_url https://usn.ubuntu.com/6735-1/
reference_id USN-6735-1
reference_type
scores
url https://usn.ubuntu.com/6735-1/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30588
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q75s-43sx-4kbg
36
url VCID-rg1f-5nhq-m7ea
vulnerability_id VCID-rg1f-5nhq-m7ea
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32004.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32004.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-32004
reference_id
reference_type
scores
0
value 0.00118
scoring_system epss
scoring_elements 0.30769
published_at 2026-04-02T12:55:00Z
1
value 0.00118
scoring_system epss
scoring_elements 0.30613
published_at 2026-04-21T12:55:00Z
2
value 0.00118
scoring_system epss
scoring_elements 0.30818
published_at 2026-04-04T12:55:00Z
3
value 0.00118
scoring_system epss
scoring_elements 0.30635
published_at 2026-04-07T12:55:00Z
4
value 0.00118
scoring_system epss
scoring_elements 0.30693
published_at 2026-04-08T12:55:00Z
5
value 0.00118
scoring_system epss
scoring_elements 0.30725
published_at 2026-04-09T12:55:00Z
6
value 0.00118
scoring_system epss
scoring_elements 0.30729
published_at 2026-04-11T12:55:00Z
7
value 0.00118
scoring_system epss
scoring_elements 0.30683
published_at 2026-04-12T12:55:00Z
8
value 0.00118
scoring_system epss
scoring_elements 0.30639
published_at 2026-04-13T12:55:00Z
9
value 0.00118
scoring_system epss
scoring_elements 0.30664
published_at 2026-04-16T12:55:00Z
10
value 0.00118
scoring_system epss
scoring_elements 0.30647
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-32004
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2038134
reference_id 2038134
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-08T20:19:44Z/
url https://hackerone.com/reports/2038134
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2230951
reference_id 2230951
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2230951
5
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JQPELKG2LVTADSB7ME73AV4DXQK47PWK/
reference_id JQPELKG2LVTADSB7ME73AV4DXQK47PWK
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-08T20:19:44Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JQPELKG2LVTADSB7ME73AV4DXQK47PWK/
7
reference_url https://security.netapp.com/advisory/ntap-20230915-0009/
reference_id ntap-20230915-0009
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-08T20:19:44Z/
url https://security.netapp.com/advisory/ntap-20230915-0009/
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX/
reference_id PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-08T20:19:44Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-32004
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rg1f-5nhq-m7ea
37
url VCID-s1a4-9r1m-8uaw
vulnerability_id VCID-s1a4-9r1m-8uaw
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39332.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39332.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-39332
reference_id
reference_type
scores
0
value 0.0057
scoring_system epss
scoring_elements 0.68556
published_at 2026-04-02T12:55:00Z
1
value 0.0057
scoring_system epss
scoring_elements 0.68655
published_at 2026-04-18T12:55:00Z
2
value 0.0057
scoring_system epss
scoring_elements 0.68621
published_at 2026-04-09T12:55:00Z
3
value 0.0057
scoring_system epss
scoring_elements 0.68646
published_at 2026-04-11T12:55:00Z
4
value 0.0057
scoring_system epss
scoring_elements 0.68634
published_at 2026-04-21T12:55:00Z
5
value 0.0057
scoring_system epss
scoring_elements 0.68643
published_at 2026-04-16T12:55:00Z
6
value 0.0057
scoring_system epss
scoring_elements 0.68575
published_at 2026-04-04T12:55:00Z
7
value 0.0057
scoring_system epss
scoring_elements 0.68553
published_at 2026-04-07T12:55:00Z
8
value 0.0057
scoring_system epss
scoring_elements 0.68604
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-39332
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2199818
reference_id 2199818
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-13T14:54:41Z/
url https://hackerone.com/reports/2199818
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2244414
reference_id 2244414
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2244414
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/
reference_id 3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-13T14:54:41Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/
6
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
7
reference_url https://security.netapp.com/advisory/ntap-20231116-0009/
reference_id ntap-20231116-0009
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-13T14:54:41Z/
url https://security.netapp.com/advisory/ntap-20231116-0009/
8
reference_url https://access.redhat.com/errata/RHSA-2023:7205
reference_id RHSA-2023:7205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7205
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-39332
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s1a4-9r1m-8uaw
38
url VCID-sthj-jvke-tyg7
vulnerability_id VCID-sthj-jvke-tyg7
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30584.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30584.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30584
reference_id
reference_type
scores
0
value 0.00012
scoring_system epss
scoring_elements 0.01882
published_at 2026-04-02T12:55:00Z
1
value 0.00012
scoring_system epss
scoring_elements 0.01939
published_at 2026-04-21T12:55:00Z
2
value 0.00012
scoring_system epss
scoring_elements 0.01855
published_at 2026-04-16T12:55:00Z
3
value 0.00012
scoring_system epss
scoring_elements 0.01853
published_at 2026-04-18T12:55:00Z
4
value 0.00012
scoring_system epss
scoring_elements 0.01895
published_at 2026-04-11T12:55:00Z
5
value 0.00012
scoring_system epss
scoring_elements 0.01894
published_at 2026-04-07T12:55:00Z
6
value 0.00012
scoring_system epss
scoring_elements 0.01897
published_at 2026-04-08T12:55:00Z
7
value 0.00012
scoring_system epss
scoring_elements 0.0191
published_at 2026-04-09T12:55:00Z
8
value 0.00012
scoring_system epss
scoring_elements 0.01879
published_at 2026-04-12T12:55:00Z
9
value 0.00012
scoring_system epss
scoring_elements 0.01874
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30584
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219829
reference_id 2219829
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219829
3
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
4
reference_url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
reference_id june-2023-security-releases
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-09T18:33:59Z/
url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30584
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sthj-jvke-tyg7
39
url VCID-tpck-fwrj-ruaq
vulnerability_id VCID-tpck-fwrj-ruaq
summary Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine:* OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf” exists.Whenever the above conditions are present, `node.exe` will search for `providers.dll` in the current user directory.After that, `node.exe` will try to search for `providers.dll` by the DLL Search Order in Windows.It is possible for an attacker to place the malicious file `providers.dll` under a variety of paths and exploit this vulnerability.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-32223
reference_id
reference_type
scores
0
value 0.06141
scoring_system epss
scoring_elements 0.90835
published_at 2026-04-21T12:55:00Z
1
value 0.06141
scoring_system epss
scoring_elements 0.90772
published_at 2026-04-02T12:55:00Z
2
value 0.06141
scoring_system epss
scoring_elements 0.90783
published_at 2026-04-04T12:55:00Z
3
value 0.06141
scoring_system epss
scoring_elements 0.90793
published_at 2026-04-07T12:55:00Z
4
value 0.06141
scoring_system epss
scoring_elements 0.90804
published_at 2026-04-08T12:55:00Z
5
value 0.06141
scoring_system epss
scoring_elements 0.90811
published_at 2026-04-09T12:55:00Z
6
value 0.06141
scoring_system epss
scoring_elements 0.90819
published_at 2026-04-11T12:55:00Z
7
value 0.06141
scoring_system epss
scoring_elements 0.9082
published_at 2026-04-12T12:55:00Z
8
value 0.06141
scoring_system epss
scoring_elements 0.90818
published_at 2026-04-13T12:55:00Z
9
value 0.06141
scoring_system epss
scoring_elements 0.90837
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-32223
1
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2022-32223
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tpck-fwrj-ruaq
40
url VCID-ueyx-hwjr-fuhq
vulnerability_id VCID-ueyx-hwjr-fuhq
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30583.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30583.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30583
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.05743
published_at 2026-04-02T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.05922
published_at 2026-04-21T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.05769
published_at 2026-04-16T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.05776
published_at 2026-04-18T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.05784
published_at 2026-04-04T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.05778
published_at 2026-04-07T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.05818
published_at 2026-04-08T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05843
published_at 2026-04-09T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05821
published_at 2026-04-11T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.05812
published_at 2026-04-12T12:55:00Z
10
value 0.00022
scoring_system epss
scoring_elements 0.05805
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30583
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219833
reference_id 2219833
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219833
3
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
4
reference_url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
reference_id june-2023-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T18:28:41Z/
url https://nodejs.org/en/blog/vulnerability/june-2023-security-releases
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30583
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ueyx-hwjr-fuhq
41
url VCID-uftn-4gjb-dqe6
vulnerability_id VCID-uftn-4gjb-dqe6
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32003.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32003.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-32003
reference_id
reference_type
scores
0
value 0.00063
scoring_system epss
scoring_elements 0.19891
published_at 2026-04-02T12:55:00Z
1
value 0.00063
scoring_system epss
scoring_elements 0.19699
published_at 2026-04-21T12:55:00Z
2
value 0.00063
scoring_system epss
scoring_elements 0.19947
published_at 2026-04-04T12:55:00Z
3
value 0.00063
scoring_system epss
scoring_elements 0.19674
published_at 2026-04-07T12:55:00Z
4
value 0.00063
scoring_system epss
scoring_elements 0.19754
published_at 2026-04-08T12:55:00Z
5
value 0.00063
scoring_system epss
scoring_elements 0.19805
published_at 2026-04-09T12:55:00Z
6
value 0.00063
scoring_system epss
scoring_elements 0.1981
published_at 2026-04-11T12:55:00Z
7
value 0.00063
scoring_system epss
scoring_elements 0.19765
published_at 2026-04-12T12:55:00Z
8
value 0.00063
scoring_system epss
scoring_elements 0.19708
published_at 2026-04-13T12:55:00Z
9
value 0.00063
scoring_system epss
scoring_elements 0.19683
published_at 2026-04-16T12:55:00Z
10
value 0.00063
scoring_system epss
scoring_elements 0.19685
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-32003
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2037887
reference_id 2037887
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T14:15:53Z/
url https://hackerone.com/reports/2037887
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2230959
reference_id 2230959
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2230959
5
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JQPELKG2LVTADSB7ME73AV4DXQK47PWK/
reference_id JQPELKG2LVTADSB7ME73AV4DXQK47PWK
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T14:15:53Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JQPELKG2LVTADSB7ME73AV4DXQK47PWK/
7
reference_url https://security.netapp.com/advisory/ntap-20230915-0009/
reference_id ntap-20230915-0009
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T14:15:53Z/
url https://security.netapp.com/advisory/ntap-20230915-0009/
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX/
reference_id PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-09T14:15:53Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PBOZE2QZIBLFFTYWYN23FGKN6HULZ6HX/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-32003
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uftn-4gjb-dqe6
42
url VCID-v3uy-dqn9-qye5
vulnerability_id VCID-v3uy-dqn9-qye5
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32222.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32222.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-32222
reference_id
reference_type
scores
0
value 0.0062
scoring_system epss
scoring_elements 0.69973
published_at 2026-04-02T12:55:00Z
1
value 0.0062
scoring_system epss
scoring_elements 0.69987
published_at 2026-04-04T12:55:00Z
2
value 0.0062
scoring_system epss
scoring_elements 0.69964
published_at 2026-04-07T12:55:00Z
3
value 0.0062
scoring_system epss
scoring_elements 0.70012
published_at 2026-04-08T12:55:00Z
4
value 0.0062
scoring_system epss
scoring_elements 0.70028
published_at 2026-04-09T12:55:00Z
5
value 0.0062
scoring_system epss
scoring_elements 0.70051
published_at 2026-04-11T12:55:00Z
6
value 0.0062
scoring_system epss
scoring_elements 0.70036
published_at 2026-04-12T12:55:00Z
7
value 0.0062
scoring_system epss
scoring_elements 0.70023
published_at 2026-04-13T12:55:00Z
8
value 0.0062
scoring_system epss
scoring_elements 0.70066
published_at 2026-04-16T12:55:00Z
9
value 0.0062
scoring_system epss
scoring_elements 0.70075
published_at 2026-04-18T12:55:00Z
10
value 0.0062
scoring_system epss
scoring_elements 0.70056
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-32222
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2105424
reference_id 2105424
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2105424
4
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2022-32222
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v3uy-dqn9-qye5
43
url VCID-vhg4-51cg-ebaa
vulnerability_id VCID-vhg4-51cg-ebaa
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21891.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21891.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-21891
reference_id
reference_type
scores
0
value 0.00235
scoring_system epss
scoring_elements 0.46473
published_at 2026-04-21T12:55:00Z
1
value 0.00235
scoring_system epss
scoring_elements 0.46463
published_at 2026-04-12T12:55:00Z
2
value 0.00235
scoring_system epss
scoring_elements 0.46412
published_at 2026-04-07T12:55:00Z
3
value 0.00235
scoring_system epss
scoring_elements 0.46468
published_at 2026-04-09T12:55:00Z
4
value 0.00235
scoring_system epss
scoring_elements 0.46492
published_at 2026-04-11T12:55:00Z
5
value 0.00235
scoring_system epss
scoring_elements 0.46472
published_at 2026-04-13T12:55:00Z
6
value 0.00235
scoring_system epss
scoring_elements 0.4653
published_at 2026-04-16T12:55:00Z
7
value 0.00235
scoring_system epss
scoring_elements 0.46527
published_at 2026-04-18T12:55:00Z
8
value 0.00235
scoring_system epss
scoring_elements 0.46443
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-21891
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2259914
reference_id 2259914
reference_type
scores
0
value 7.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T17:59:04Z/
url https://hackerone.com/reports/2259914
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2265720
reference_id 2265720
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2265720
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://security.netapp.com/advisory/ntap-20240315-0005/
reference_id ntap-20240315-0005
reference_type
scores
0
value 7.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-20T17:59:04Z/
url https://security.netapp.com/advisory/ntap-20240315-0005/
7
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
8
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-21891
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vhg4-51cg-ebaa
44
url VCID-w6yn-qt4p-vudt
vulnerability_id VCID-w6yn-qt4p-vudt
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22018.json
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22018.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22018
reference_id
reference_type
scores
0
value 0.00212
scoring_system epss
scoring_elements 0.43657
published_at 2026-04-21T12:55:00Z
1
value 0.00212
scoring_system epss
scoring_elements 0.43697
published_at 2026-04-08T12:55:00Z
2
value 0.00212
scoring_system epss
scoring_elements 0.43701
published_at 2026-04-09T12:55:00Z
3
value 0.00212
scoring_system epss
scoring_elements 0.4372
published_at 2026-04-11T12:55:00Z
4
value 0.00212
scoring_system epss
scoring_elements 0.43689
published_at 2026-04-12T12:55:00Z
5
value 0.00212
scoring_system epss
scoring_elements 0.43672
published_at 2026-04-13T12:55:00Z
6
value 0.00212
scoring_system epss
scoring_elements 0.43733
published_at 2026-04-16T12:55:00Z
7
value 0.00212
scoring_system epss
scoring_elements 0.43724
published_at 2026-04-18T12:55:00Z
8
value 0.00212
scoring_system epss
scoring_elements 0.43687
published_at 2026-04-02T12:55:00Z
9
value 0.00212
scoring_system epss
scoring_elements 0.43711
published_at 2026-04-04T12:55:00Z
10
value 0.00212
scoring_system epss
scoring_elements 0.43646
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22018
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2145862
reference_id 2145862
reference_type
scores
0
value 2.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-10T16:07:56Z/
url https://hackerone.com/reports/2145862
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2296990
reference_id 2296990
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2296990
5
reference_url http://www.openwall.com/lists/oss-security/2024/07/19/3
reference_id 3
reference_type
scores
0
value 2.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-10T16:07:56Z/
url http://www.openwall.com/lists/oss-security/2024/07/19/3
6
reference_url http://www.openwall.com/lists/oss-security/2024/07/11/6
reference_id 6
reference_type
scores
0
value 2.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-10T16:07:56Z/
url http://www.openwall.com/lists/oss-security/2024/07/11/6
7
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
8
reference_url https://access.redhat.com/errata/RHSA-2024:5814
reference_id RHSA-2024:5814
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5814
9
reference_url https://access.redhat.com/errata/RHSA-2024:5815
reference_id RHSA-2024:5815
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:5815
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.15.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.15.1%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-22018
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w6yn-qt4p-vudt
45
url VCID-x1an-pjq4-nbby
vulnerability_id VCID-x1an-pjq4-nbby
summary nodejs: Nodejs file permissions bypass
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55130.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55130.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55130
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.02953
published_at 2026-04-02T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.03034
published_at 2026-04-21T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.02932
published_at 2026-04-13T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.02906
published_at 2026-04-16T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.02916
published_at 2026-04-18T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.02968
published_at 2026-04-04T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.02976
published_at 2026-04-07T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.02977
published_at 2026-04-08T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03002
published_at 2026-04-09T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.02964
published_at 2026-04-11T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.02941
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55130
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55130
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55130
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431352
reference_id 2431352
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431352
5
reference_url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
reference_id december-2025-security-releases
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:29Z/
url https://nodejs.org/en/blog/vulnerability/december-2025-security-releases
6
reference_url https://access.redhat.com/errata/RHSA-2026:1842
reference_id RHSA-2026:1842
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1842
7
reference_url https://access.redhat.com/errata/RHSA-2026:1843
reference_id RHSA-2026:1843
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1843
8
reference_url https://access.redhat.com/errata/RHSA-2026:2420
reference_id RHSA-2026:2420
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2420
9
reference_url https://access.redhat.com/errata/RHSA-2026:2421
reference_id RHSA-2026:2421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2421
10
reference_url https://access.redhat.com/errata/RHSA-2026:2422
reference_id RHSA-2026:2422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2422
11
reference_url https://access.redhat.com/errata/RHSA-2026:2767
reference_id RHSA-2026:2767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2767
12
reference_url https://access.redhat.com/errata/RHSA-2026:2768
reference_id RHSA-2026:2768
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2768
13
reference_url https://access.redhat.com/errata/RHSA-2026:2781
reference_id RHSA-2026:2781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2781
14
reference_url https://access.redhat.com/errata/RHSA-2026:2782
reference_id RHSA-2026:2782
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2782
15
reference_url https://access.redhat.com/errata/RHSA-2026:2783
reference_id RHSA-2026:2783
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2783
16
reference_url https://access.redhat.com/errata/RHSA-2026:2864
reference_id RHSA-2026:2864
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2864
17
reference_url https://access.redhat.com/errata/RHSA-2026:2899
reference_id RHSA-2026:2899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2899
18
reference_url https://access.redhat.com/errata/RHSA-2026:6402
reference_id RHSA-2026:6402
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6402
19
reference_url https://access.redhat.com/errata/RHSA-2026:6431
reference_id RHSA-2026:6431
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6431
20
reference_url https://access.redhat.com/errata/RHSA-2026:7378
reference_id RHSA-2026:7378
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7378
21
reference_url https://access.redhat.com/errata/RHSA-2026:7386
reference_id RHSA-2026:7386
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7386
22
reference_url https://access.redhat.com/errata/RHSA-2026:7387
reference_id RHSA-2026:7387
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7387
23
reference_url https://access.redhat.com/errata/RHSA-2026:7657
reference_id RHSA-2026:7657
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7657
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.0%252Bdfsg%252B~cs22.19.6-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-55130
risk_score 3.2
exploitability 0.5
weighted_severity 6.4
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x1an-pjq4-nbby
46
url VCID-xert-byqc-xbe2
vulnerability_id VCID-xert-byqc-xbe2
summary Node.js: Node.js: Unauthorized inter-process communication due to missing Unix Domain Socket permission checks
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21711.json
reference_id
reference_type
scores
0
value 5.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21711.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21711
reference_id
reference_type
scores
0
value 3e-05
scoring_system epss
scoring_elements 0.00124
published_at 2026-04-21T12:55:00Z
1
value 3e-05
scoring_system epss
scoring_elements 0.00125
published_at 2026-04-04T12:55:00Z
2
value 4e-05
scoring_system epss
scoring_elements 0.00146
published_at 2026-04-08T12:55:00Z
3
value 4e-05
scoring_system epss
scoring_elements 0.00149
published_at 2026-04-18T12:55:00Z
4
value 4e-05
scoring_system epss
scoring_elements 0.00148
published_at 2026-04-12T12:55:00Z
5
value 4e-05
scoring_system epss
scoring_elements 0.00147
published_at 2026-04-13T12:55:00Z
6
value 5e-05
scoring_system epss
scoring_elements 0.00245
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21711
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2453158
reference_id 2453158
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2453158
4
reference_url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
reference_id march-2026-security-releases
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-01T15:02:57Z/
url https://nodejs.org/en/blog/vulnerability/march-2026-security-releases
5
reference_url https://access.redhat.com/errata/RHSA-2026:7350
reference_id RHSA-2026:7350
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7350
6
reference_url https://access.redhat.com/errata/RHSA-2026:7670
reference_id RHSA-2026:7670
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7670
7
reference_url https://access.redhat.com/errata/RHSA-2026:7675
reference_id RHSA-2026:7675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7675
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2026-21711
risk_score 2.4
exploitability 0.5
weighted_severity 4.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xert-byqc-xbe2
47
url VCID-xkpz-pb5y-jqcy
vulnerability_id VCID-xkpz-pb5y-jqcy
summary nodejs: Remote Crash via SignTraits::DeriveBits() in Node.js
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23166.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23166.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-23166
reference_id
reference_type
scores
0
value 0.00304
scoring_system epss
scoring_elements 0.53717
published_at 2026-04-21T12:55:00Z
1
value 0.00304
scoring_system epss
scoring_elements 0.53678
published_at 2026-04-09T12:55:00Z
2
value 0.00304
scoring_system epss
scoring_elements 0.53727
published_at 2026-04-11T12:55:00Z
3
value 0.00304
scoring_system epss
scoring_elements 0.53711
published_at 2026-04-12T12:55:00Z
4
value 0.00304
scoring_system epss
scoring_elements 0.53693
published_at 2026-04-13T12:55:00Z
5
value 0.00304
scoring_system epss
scoring_elements 0.53731
published_at 2026-04-16T12:55:00Z
6
value 0.00304
scoring_system epss
scoring_elements 0.53735
published_at 2026-04-18T12:55:00Z
7
value 0.00304
scoring_system epss
scoring_elements 0.53633
published_at 2026-04-02T12:55:00Z
8
value 0.00304
scoring_system epss
scoring_elements 0.53661
published_at 2026-04-04T12:55:00Z
9
value 0.00304
scoring_system epss
scoring_elements 0.53629
published_at 2026-04-07T12:55:00Z
10
value 0.00304
scoring_system epss
scoring_elements 0.5368
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-23166
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105832
reference_id 1105832
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105832
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2367163
reference_id 2367163
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2367163
5
reference_url https://security.archlinux.org/ASA-202505-6
reference_id ASA-202505-6
reference_type
scores
url https://security.archlinux.org/ASA-202505-6
6
reference_url https://security.archlinux.org/ASA-202505-7
reference_id ASA-202505-7
reference_type
scores
url https://security.archlinux.org/ASA-202505-7
7
reference_url https://security.archlinux.org/ASA-202505-8
reference_id ASA-202505-8
reference_type
scores
url https://security.archlinux.org/ASA-202505-8
8
reference_url https://security.archlinux.org/AVG-2871
reference_id AVG-2871
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2871
9
reference_url https://security.archlinux.org/AVG-2872
reference_id AVG-2872
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2872
10
reference_url https://security.archlinux.org/AVG-2873
reference_id AVG-2873
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2873
11
reference_url https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
reference_id may-2025-security-releases
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-19T14:11:17Z/
url https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
12
reference_url https://access.redhat.com/errata/RHSA-2025:8467
reference_id RHSA-2025:8467
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8467
13
reference_url https://access.redhat.com/errata/RHSA-2025:8468
reference_id RHSA-2025:8468
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8468
14
reference_url https://access.redhat.com/errata/RHSA-2025:8493
reference_id RHSA-2025:8493
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8493
15
reference_url https://access.redhat.com/errata/RHSA-2025:8506
reference_id RHSA-2025:8506
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8506
16
reference_url https://access.redhat.com/errata/RHSA-2025:8514
reference_id RHSA-2025:8514
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8514
17
reference_url https://access.redhat.com/errata/RHSA-2025:8902
reference_id RHSA-2025:8902
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8902
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-23166
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xkpz-pb5y-jqcy
48
url VCID-xva8-adbf-87h3
vulnerability_id VCID-xva8-adbf-87h3
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22017.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22017.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22017
reference_id
reference_type
scores
0
value 0.00637
scoring_system epss
scoring_elements 0.70435
published_at 2026-04-04T12:55:00Z
1
value 0.00637
scoring_system epss
scoring_elements 0.70418
published_at 2026-04-02T12:55:00Z
2
value 0.00876
scoring_system epss
scoring_elements 0.75332
published_at 2026-04-11T12:55:00Z
3
value 0.00876
scoring_system epss
scoring_elements 0.75345
published_at 2026-04-18T12:55:00Z
4
value 0.00876
scoring_system epss
scoring_elements 0.75338
published_at 2026-04-16T12:55:00Z
5
value 0.00876
scoring_system epss
scoring_elements 0.75299
published_at 2026-04-13T12:55:00Z
6
value 0.00876
scoring_system epss
scoring_elements 0.75311
published_at 2026-04-09T12:55:00Z
7
value 0.00876
scoring_system epss
scoring_elements 0.7531
published_at 2026-04-12T12:55:00Z
8
value 0.00876
scoring_system epss
scoring_elements 0.75334
published_at 2026-04-21T12:55:00Z
9
value 0.00876
scoring_system epss
scoring_elements 0.75257
published_at 2026-04-07T12:55:00Z
10
value 0.00876
scoring_system epss
scoring_elements 0.753
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22017
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://hackerone.com/reports/2170226
reference_id 2170226
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-07T04:00:22Z/
url https://hackerone.com/reports/2170226
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2265727
reference_id 2265727
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2265727
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://security.netapp.com/advisory/ntap-20240517-0007/
reference_id ntap-20240517-0007
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-07T04:00:22Z/
url https://security.netapp.com/advisory/ntap-20240517-0007/
7
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
8
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-22017
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xva8-adbf-87h3
49
url VCID-ydzj-e97m-k3cp
vulnerability_id VCID-ydzj-e97m-k3cp
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23083.json
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23083.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-23083
reference_id
reference_type
scores
0
value 0.00105
scoring_system epss
scoring_elements 0.28663
published_at 2026-04-02T12:55:00Z
1
value 0.00105
scoring_system epss
scoring_elements 0.28476
published_at 2026-04-21T12:55:00Z
2
value 0.00105
scoring_system epss
scoring_elements 0.28529
published_at 2026-04-13T12:55:00Z
3
value 0.00105
scoring_system epss
scoring_elements 0.28548
published_at 2026-04-16T12:55:00Z
4
value 0.00105
scoring_system epss
scoring_elements 0.28523
published_at 2026-04-18T12:55:00Z
5
value 0.00105
scoring_system epss
scoring_elements 0.28709
published_at 2026-04-04T12:55:00Z
6
value 0.00105
scoring_system epss
scoring_elements 0.28514
published_at 2026-04-07T12:55:00Z
7
value 0.00105
scoring_system epss
scoring_elements 0.28579
published_at 2026-04-08T12:55:00Z
8
value 0.00105
scoring_system epss
scoring_elements 0.28619
published_at 2026-04-09T12:55:00Z
9
value 0.00105
scoring_system epss
scoring_elements 0.28621
published_at 2026-04-11T12:55:00Z
10
value 0.00105
scoring_system epss
scoring_elements 0.28578
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-23083
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1094134
reference_id 1094134
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1094134
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2339392
reference_id 2339392
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2339392
5
reference_url https://security.gentoo.org/glsa/202506-08
reference_id GLSA-202506-08
reference_type
scores
url https://security.gentoo.org/glsa/202506-08
6
reference_url https://nodejs.org/en/blog/vulnerability/january-2025-security-releases
reference_id january-2025-security-releases
reference_type
scores
0
value 7.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-28T04:55:27Z/
url https://nodejs.org/en/blog/vulnerability/january-2025-security-releases
7
reference_url https://access.redhat.com/errata/RHSA-2025:1351
reference_id RHSA-2025:1351
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1351
8
reference_url https://access.redhat.com/errata/RHSA-2025:1443
reference_id RHSA-2025:1443
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1443
9
reference_url https://access.redhat.com/errata/RHSA-2025:1522
reference_id RHSA-2025:1522
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1522
10
reference_url https://access.redhat.com/errata/RHSA-2025:1611
reference_id RHSA-2025:1611
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1611
11
reference_url https://access.redhat.com/errata/RHSA-2025:1613
reference_id RHSA-2025:1613
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1613
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.18.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.18.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.18.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-23083
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ydzj-e97m-k3cp
50
url VCID-yxvf-4pb4-d7ec
vulnerability_id VCID-yxvf-4pb4-d7ec
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39333.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-39333.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-39333
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26407
published_at 2026-04-02T12:55:00Z
1
value 0.00094
scoring_system epss
scoring_elements 0.26188
published_at 2026-04-21T12:55:00Z
2
value 0.00094
scoring_system epss
scoring_elements 0.26302
published_at 2026-04-12T12:55:00Z
3
value 0.00094
scoring_system epss
scoring_elements 0.26243
published_at 2026-04-13T12:55:00Z
4
value 0.00094
scoring_system epss
scoring_elements 0.26249
published_at 2026-04-16T12:55:00Z
5
value 0.00094
scoring_system epss
scoring_elements 0.2645
published_at 2026-04-04T12:55:00Z
6
value 0.00094
scoring_system epss
scoring_elements 0.26224
published_at 2026-04-18T12:55:00Z
7
value 0.00094
scoring_system epss
scoring_elements 0.26292
published_at 2026-04-08T12:55:00Z
8
value 0.00094
scoring_system epss
scoring_elements 0.26339
published_at 2026-04-09T12:55:00Z
9
value 0.00094
scoring_system epss
scoring_elements 0.26348
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-39333
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054892
reference_id 1054892
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054892
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2244418
reference_id 2244418
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2244418
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://nodejs.org/en/blog/vulnerability/october-2023-security-releases
reference_id october-2023-security-releases
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-09T18:03:18Z/
url https://nodejs.org/en/blog/vulnerability/october-2023-security-releases
7
reference_url https://access.redhat.com/errata/RHSA-2023:5849
reference_id RHSA-2023:5849
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5849
8
reference_url https://access.redhat.com/errata/RHSA-2023:5869
reference_id RHSA-2023:5869
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5869
9
reference_url https://access.redhat.com/errata/RHSA-2023:7205
reference_id RHSA-2023:7205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7205
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-39333
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yxvf-4pb4-d7ec
51
url VCID-yz6h-h3bb-27ee
vulnerability_id VCID-yz6h-h3bb-27ee
summary Node.js: Fail to Escape Arguments Properly in Microsoft Windows
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27980.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27980.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27980
reference_id
reference_type
scores
0
value 0.00272
scoring_system epss
scoring_elements 0.50644
published_at 2026-04-21T12:55:00Z
1
value 0.00272
scoring_system epss
scoring_elements 0.5058
published_at 2026-04-02T12:55:00Z
2
value 0.00272
scoring_system epss
scoring_elements 0.50607
published_at 2026-04-04T12:55:00Z
3
value 0.00272
scoring_system epss
scoring_elements 0.50561
published_at 2026-04-07T12:55:00Z
4
value 0.00272
scoring_system epss
scoring_elements 0.50615
published_at 2026-04-08T12:55:00Z
5
value 0.00272
scoring_system epss
scoring_elements 0.50612
published_at 2026-04-09T12:55:00Z
6
value 0.00272
scoring_system epss
scoring_elements 0.50654
published_at 2026-04-11T12:55:00Z
7
value 0.00272
scoring_system epss
scoring_elements 0.50632
published_at 2026-04-12T12:55:00Z
8
value 0.00272
scoring_system epss
scoring_elements 0.50618
published_at 2026-04-13T12:55:00Z
9
value 0.00272
scoring_system epss
scoring_elements 0.50659
published_at 2026-04-16T12:55:00Z
10
value 0.00272
scoring_system epss
scoring_elements 0.50665
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27980
2
reference_url http://www.openwall.com/lists/oss-security/2024/04/10/15
reference_id 15
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T21:31:55Z/
url http://www.openwall.com/lists/oss-security/2024/04/10/15
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2270693
reference_id 2270693
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2270693
4
reference_url http://www.openwall.com/lists/oss-security/2024/07/19/3
reference_id 3
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T21:31:55Z/
url http://www.openwall.com/lists/oss-security/2024/07/19/3
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MZN6PFXHTCCUENAKZXTGWPKUAHI6E2W/
reference_id 5MZN6PFXHTCCUENAKZXTGWPKUAHI6E2W
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T21:31:55Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MZN6PFXHTCCUENAKZXTGWPKUAHI6E2W/
6
reference_url http://www.openwall.com/lists/oss-security/2024/07/11/6
reference_id 6
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T21:31:55Z/
url http://www.openwall.com/lists/oss-security/2024/07/11/6
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JUWBYDVCUSCX7YWTBX75LADMCVYFBGKU/
reference_id JUWBYDVCUSCX7YWTBX75LADMCVYFBGKU
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T21:31:55Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JUWBYDVCUSCX7YWTBX75LADMCVYFBGKU/
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-27980
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yz6h-h3bb-27ee
52
url VCID-zckz-447u-gueb
vulnerability_id VCID-zckz-447u-gueb
summary 
Multiple vulnerabilities have been found in NodeJS, the worst of
    which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8172.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8172.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-8172
reference_id
reference_type
scores
0
value 0.01183
scoring_system epss
scoring_elements 0.78718
published_at 2026-04-01T12:55:00Z
1
value 0.01183
scoring_system epss
scoring_elements 0.78725
published_at 2026-04-02T12:55:00Z
2
value 0.01183
scoring_system epss
scoring_elements 0.78757
published_at 2026-04-04T12:55:00Z
3
value 0.01183
scoring_system epss
scoring_elements 0.78739
published_at 2026-04-07T12:55:00Z
4
value 0.01183
scoring_system epss
scoring_elements 0.78764
published_at 2026-04-08T12:55:00Z
5
value 0.01183
scoring_system epss
scoring_elements 0.78771
published_at 2026-04-09T12:55:00Z
6
value 0.01183
scoring_system epss
scoring_elements 0.78795
published_at 2026-04-11T12:55:00Z
7
value 0.01183
scoring_system epss
scoring_elements 0.78778
published_at 2026-04-12T12:55:00Z
8
value 0.01183
scoring_system epss
scoring_elements 0.78769
published_at 2026-04-13T12:55:00Z
9
value 0.01183
scoring_system epss
scoring_elements 0.78798
published_at 2026-04-16T12:55:00Z
10
value 0.01183
scoring_system epss
scoring_elements 0.78796
published_at 2026-04-18T12:55:00Z
11
value 0.01183
scoring_system epss
scoring_elements 0.78791
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-8172
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1845247
reference_id 1845247
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1845247
4
reference_url https://access.redhat.com/errata/RHSA-2020:2847
reference_id RHSA-2020:2847
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2847
5
reference_url https://access.redhat.com/errata/RHSA-2020:2852
reference_id RHSA-2020:2852
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2852
6
reference_url https://access.redhat.com/errata/RHSA-2020:2895
reference_id RHSA-2020:2895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2895
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2020-8172
risk_score 3.4
exploitability 0.5
weighted_severity 6.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zckz-447u-gueb
53
url VCID-znta-r3v4-hyg1
vulnerability_id VCID-znta-r3v4-hyg1
summary nodejs: Memory Leak in Node.js ReadFileUtf8 Binding Leading to DoS
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23165.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23165.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-23165
reference_id
reference_type
scores
0
value 0.00356
scoring_system epss
scoring_elements 0.5792
published_at 2026-04-21T12:55:00Z
1
value 0.00356
scoring_system epss
scoring_elements 0.57956
published_at 2026-04-11T12:55:00Z
2
value 0.00356
scoring_system epss
scoring_elements 0.57933
published_at 2026-04-12T12:55:00Z
3
value 0.00356
scoring_system epss
scoring_elements 0.57913
published_at 2026-04-13T12:55:00Z
4
value 0.00356
scoring_system epss
scoring_elements 0.57943
published_at 2026-04-16T12:55:00Z
5
value 0.00356
scoring_system epss
scoring_elements 0.57942
published_at 2026-04-18T12:55:00Z
6
value 0.00356
scoring_system epss
scoring_elements 0.57888
published_at 2026-04-02T12:55:00Z
7
value 0.00356
scoring_system epss
scoring_elements 0.57907
published_at 2026-04-04T12:55:00Z
8
value 0.00356
scoring_system epss
scoring_elements 0.57883
published_at 2026-04-07T12:55:00Z
9
value 0.00356
scoring_system epss
scoring_elements 0.57938
published_at 2026-04-08T12:55:00Z
10
value 0.00356
scoring_system epss
scoring_elements 0.57939
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-23165
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105832
reference_id 1105832
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105832
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2367162
reference_id 2367162
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2367162
5
reference_url https://security.archlinux.org/ASA-202505-7
reference_id ASA-202505-7
reference_type
scores
url https://security.archlinux.org/ASA-202505-7
6
reference_url https://security.archlinux.org/ASA-202505-8
reference_id ASA-202505-8
reference_type
scores
url https://security.archlinux.org/ASA-202505-8
7
reference_url https://security.archlinux.org/AVG-2872
reference_id AVG-2872
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2872
8
reference_url https://security.archlinux.org/AVG-2873
reference_id AVG-2873
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2873
9
reference_url https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
reference_id may-2025-security-releases
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-19T13:55:12Z/
url https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
10
reference_url https://access.redhat.com/errata/RHSA-2025:8467
reference_id RHSA-2025:8467
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8467
11
reference_url https://access.redhat.com/errata/RHSA-2025:8468
reference_id RHSA-2025:8468
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8468
12
reference_url https://access.redhat.com/errata/RHSA-2025:8493
reference_id RHSA-2025:8493
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8493
13
reference_url https://access.redhat.com/errata/RHSA-2025:8506
reference_id RHSA-2025:8506
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8506
14
reference_url https://access.redhat.com/errata/RHSA-2025:8514
reference_id RHSA-2025:8514
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8514
fixed_packages
0
url pkg:deb/debian/nodejs@0?distro=trixie
purl pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2025-23165
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-znta-r3v4-hyg1
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie