Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
Typedeb
Namespacedebian
Namenodejs
Version12.22.12~dfsg-1~deb11u5
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version12.22.12~dfsg-1~deb11u6
Latest_non_vulnerable_version22.22.2+dfsg+~cs22.19.15-3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2z1f-7jkw-17av
vulnerability_id VCID-2z1f-7jkw-17av
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27982.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27982.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27982
reference_id
reference_type
scores
0
value 0.00391
scoring_system epss
scoring_elements 0.60147
published_at 2026-04-21T12:55:00Z
1
value 0.00391
scoring_system epss
scoring_elements 0.60149
published_at 2026-04-11T12:55:00Z
2
value 0.00391
scoring_system epss
scoring_elements 0.60134
published_at 2026-04-12T12:55:00Z
3
value 0.00391
scoring_system epss
scoring_elements 0.60116
published_at 2026-04-13T12:55:00Z
4
value 0.00391
scoring_system epss
scoring_elements 0.60154
published_at 2026-04-16T12:55:00Z
5
value 0.00391
scoring_system epss
scoring_elements 0.60161
published_at 2026-04-18T12:55:00Z
6
value 0.00391
scoring_system epss
scoring_elements 0.60068
published_at 2026-04-02T12:55:00Z
7
value 0.00391
scoring_system epss
scoring_elements 0.60093
published_at 2026-04-04T12:55:00Z
8
value 0.00391
scoring_system epss
scoring_elements 0.60063
published_at 2026-04-07T12:55:00Z
9
value 0.00391
scoring_system epss
scoring_elements 0.60113
published_at 2026-04-08T12:55:00Z
10
value 0.00391
scoring_system epss
scoring_elements 0.60127
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27982
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27982
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27982
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068347
reference_id 1068347
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068347
5
reference_url https://hackerone.com/reports/2237099
reference_id 2237099
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-07T18:19:19Z/
url https://hackerone.com/reports/2237099
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2275392
reference_id 2275392
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2275392
7
reference_url https://security.archlinux.org/AVG-2852
reference_id AVG-2852
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2852
8
reference_url https://security.archlinux.org/AVG-2853
reference_id AVG-2853
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2853
9
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
10
reference_url https://access.redhat.com/errata/RHSA-2024:2778
reference_id RHSA-2024:2778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2778
11
reference_url https://access.redhat.com/errata/RHSA-2024:2779
reference_id RHSA-2024:2779
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2779
12
reference_url https://access.redhat.com/errata/RHSA-2024:2780
reference_id RHSA-2024:2780
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2780
13
reference_url https://access.redhat.com/errata/RHSA-2024:2853
reference_id RHSA-2024:2853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2853
14
reference_url https://access.redhat.com/errata/RHSA-2024:2910
reference_id RHSA-2024:2910
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2910
15
reference_url https://access.redhat.com/errata/RHSA-2024:3545
reference_id RHSA-2024:3545
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3545
16
reference_url https://access.redhat.com/errata/RHSA-2024:4559
reference_id RHSA-2024:4559
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4559
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-27982
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2z1f-7jkw-17av
1
url VCID-9yq7-aba3-c7c3
vulnerability_id VCID-9yq7-aba3-c7c3
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32559.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32559.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-32559
reference_id
reference_type
scores
0
value 0.00061
scoring_system epss
scoring_elements 0.18904
published_at 2026-04-21T12:55:00Z
1
value 0.00061
scoring_system epss
scoring_elements 0.19017
published_at 2026-04-09T12:55:00Z
2
value 0.00061
scoring_system epss
scoring_elements 0.19024
published_at 2026-04-11T12:55:00Z
3
value 0.00061
scoring_system epss
scoring_elements 0.18977
published_at 2026-04-12T12:55:00Z
4
value 0.00061
scoring_system epss
scoring_elements 0.18926
published_at 2026-04-13T12:55:00Z
5
value 0.00061
scoring_system epss
scoring_elements 0.1888
published_at 2026-04-16T12:55:00Z
6
value 0.00061
scoring_system epss
scoring_elements 0.18892
published_at 2026-04-18T12:55:00Z
7
value 0.00061
scoring_system epss
scoring_elements 0.19169
published_at 2026-04-04T12:55:00Z
8
value 0.00061
scoring_system epss
scoring_elements 0.18885
published_at 2026-04-07T12:55:00Z
9
value 0.00061
scoring_system epss
scoring_elements 0.18963
published_at 2026-04-08T12:55:00Z
10
value 0.00074
scoring_system epss
scoring_elements 0.22427
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-32559
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32559
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32559
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050739
reference_id 1050739
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050739
5
reference_url https://hackerone.com/reports/1946470
reference_id 1946470
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-03T13:34:58Z/
url https://hackerone.com/reports/1946470
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2230956
reference_id 2230956
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2230956
7
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
8
reference_url https://security.netapp.com/advisory/ntap-20231006-0006/
reference_id ntap-20231006-0006
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-03T13:34:58Z/
url https://security.netapp.com/advisory/ntap-20231006-0006/
9
reference_url https://access.redhat.com/errata/RHSA-2023:5360
reference_id RHSA-2023:5360
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5360
10
reference_url https://access.redhat.com/errata/RHSA-2023:5361
reference_id RHSA-2023:5361
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5361
11
reference_url https://access.redhat.com/errata/RHSA-2023:5362
reference_id RHSA-2023:5362
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5362
12
reference_url https://access.redhat.com/errata/RHSA-2023:5363
reference_id RHSA-2023:5363
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5363
13
reference_url https://access.redhat.com/errata/RHSA-2023:5532
reference_id RHSA-2023:5532
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5532
14
reference_url https://access.redhat.com/errata/RHSA-2023:5533
reference_id RHSA-2023:5533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5533
15
reference_url https://usn.ubuntu.com/6822-1/
reference_id USN-6822-1
reference_type
scores
url https://usn.ubuntu.com/6822-1/
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-32559
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9yq7-aba3-c7c3
2
url VCID-bx67-aud6-b3fa
vulnerability_id VCID-bx67-aud6-b3fa
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22025.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22025.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22025
reference_id
reference_type
scores
0
value 0.0043
scoring_system epss
scoring_elements 0.62483
published_at 2026-04-02T12:55:00Z
1
value 0.0043
scoring_system epss
scoring_elements 0.62515
published_at 2026-04-04T12:55:00Z
2
value 0.00636
scoring_system epss
scoring_elements 0.70445
published_at 2026-04-21T12:55:00Z
3
value 0.00636
scoring_system epss
scoring_elements 0.7042
published_at 2026-04-09T12:55:00Z
4
value 0.00636
scoring_system epss
scoring_elements 0.70444
published_at 2026-04-11T12:55:00Z
5
value 0.00636
scoring_system epss
scoring_elements 0.70429
published_at 2026-04-12T12:55:00Z
6
value 0.00636
scoring_system epss
scoring_elements 0.70415
published_at 2026-04-13T12:55:00Z
7
value 0.00636
scoring_system epss
scoring_elements 0.70457
published_at 2026-04-16T12:55:00Z
8
value 0.00636
scoring_system epss
scoring_elements 0.70465
published_at 2026-04-18T12:55:00Z
9
value 0.00636
scoring_system epss
scoring_elements 0.70359
published_at 2026-04-07T12:55:00Z
10
value 0.00636
scoring_system epss
scoring_elements 0.70404
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22025
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22025
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22025
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2270559
reference_id 2270559
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2270559
4
reference_url https://hackerone.com/reports/2284065
reference_id 2284065
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-21T20:30:35Z/
url https://hackerone.com/reports/2284065
5
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
6
reference_url https://lists.debian.org/debian-lts-announce/2024/03/msg00029.html
reference_id msg00029.html
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-21T20:30:35Z/
url https://lists.debian.org/debian-lts-announce/2024/03/msg00029.html
7
reference_url https://security.netapp.com/advisory/ntap-20240517-0008/
reference_id ntap-20240517-0008
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-21T20:30:35Z/
url https://security.netapp.com/advisory/ntap-20240517-0008/
8
reference_url https://access.redhat.com/errata/RHSA-2024:2778
reference_id RHSA-2024:2778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2778
9
reference_url https://access.redhat.com/errata/RHSA-2024:2779
reference_id RHSA-2024:2779
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2779
10
reference_url https://access.redhat.com/errata/RHSA-2024:2780
reference_id RHSA-2024:2780
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2780
11
reference_url https://access.redhat.com/errata/RHSA-2024:2853
reference_id RHSA-2024:2853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2853
12
reference_url https://access.redhat.com/errata/RHSA-2024:2910
reference_id RHSA-2024:2910
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2910
13
reference_url https://access.redhat.com/errata/RHSA-2024:4559
reference_id RHSA-2024:4559
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4559
14
reference_url https://access.redhat.com/errata/RHSA-2024:4721
reference_id RHSA-2024:4721
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4721
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-22025
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bx67-aud6-b3fa
3
url VCID-e6gj-fe31-kkh5
vulnerability_id VCID-e6gj-fe31-kkh5
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46809.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46809.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-46809
reference_id
reference_type
scores
0
value 0.01239
scoring_system epss
scoring_elements 0.79194
published_at 2026-04-02T12:55:00Z
1
value 0.01239
scoring_system epss
scoring_elements 0.79257
published_at 2026-04-21T12:55:00Z
2
value 0.01239
scoring_system epss
scoring_elements 0.79232
published_at 2026-04-13T12:55:00Z
3
value 0.01239
scoring_system epss
scoring_elements 0.79259
published_at 2026-04-16T12:55:00Z
4
value 0.01239
scoring_system epss
scoring_elements 0.79256
published_at 2026-04-18T12:55:00Z
5
value 0.01239
scoring_system epss
scoring_elements 0.79218
published_at 2026-04-04T12:55:00Z
6
value 0.01239
scoring_system epss
scoring_elements 0.79203
published_at 2026-04-07T12:55:00Z
7
value 0.01239
scoring_system epss
scoring_elements 0.79228
published_at 2026-04-08T12:55:00Z
8
value 0.01239
scoring_system epss
scoring_elements 0.79236
published_at 2026-04-09T12:55:00Z
9
value 0.01239
scoring_system epss
scoring_elements 0.7926
published_at 2026-04-11T12:55:00Z
10
value 0.01239
scoring_system epss
scoring_elements 0.79244
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-46809
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46809
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
reference_id 1064055
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264569
reference_id 2264569
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2264569
6
reference_url https://nodejs.org/en/blog/vulnerability/february-2024-security-releases
reference_id february-2024-security-releases
reference_type
scores
0
value 7.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-09T17:40:41Z/
url https://nodejs.org/en/blog/vulnerability/february-2024-security-releases
7
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
8
reference_url https://access.redhat.com/errata/RHSA-2024:1503
reference_id RHSA-2024:1503
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1503
9
reference_url https://access.redhat.com/errata/RHSA-2024:1510
reference_id RHSA-2024:1510
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1510
10
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
11
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
12
reference_url https://access.redhat.com/errata/RHSA-2024:1880
reference_id RHSA-2024:1880
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1880
13
reference_url https://access.redhat.com/errata/RHSA-2024:1932
reference_id RHSA-2024:1932
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1932
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-46809
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6gj-fe31-kkh5
4
url VCID-e7u5-356v-jbg7
vulnerability_id VCID-e7u5-356v-jbg7
summary Multiple vulnerabilities have been discovered in Node.js.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30590.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30590.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30590
reference_id
reference_type
scores
0
value 0.00954
scoring_system epss
scoring_elements 0.76361
published_at 2026-04-02T12:55:00Z
1
value 0.00954
scoring_system epss
scoring_elements 0.76391
published_at 2026-04-04T12:55:00Z
2
value 0.00954
scoring_system epss
scoring_elements 0.76373
published_at 2026-04-07T12:55:00Z
3
value 0.00954
scoring_system epss
scoring_elements 0.76405
published_at 2026-04-08T12:55:00Z
4
value 0.00954
scoring_system epss
scoring_elements 0.7642
published_at 2026-04-09T12:55:00Z
5
value 0.00954
scoring_system epss
scoring_elements 0.76445
published_at 2026-04-11T12:55:00Z
6
value 0.00954
scoring_system epss
scoring_elements 0.76423
published_at 2026-04-12T12:55:00Z
7
value 0.00954
scoring_system epss
scoring_elements 0.76418
published_at 2026-04-13T12:55:00Z
8
value 0.00954
scoring_system epss
scoring_elements 0.76459
published_at 2026-04-16T12:55:00Z
9
value 0.00954
scoring_system epss
scoring_elements 0.76463
published_at 2026-04-18T12:55:00Z
10
value 0.00954
scoring_system epss
scoring_elements 0.76449
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30590
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30590
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30590
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
reference_id 1039990
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219842
reference_id 2219842
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219842
6
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
7
reference_url https://access.redhat.com/errata/RHSA-2023:4330
reference_id RHSA-2023:4330
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4330
8
reference_url https://access.redhat.com/errata/RHSA-2023:4331
reference_id RHSA-2023:4331
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4331
9
reference_url https://access.redhat.com/errata/RHSA-2023:4536
reference_id RHSA-2023:4536
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4536
10
reference_url https://access.redhat.com/errata/RHSA-2023:4537
reference_id RHSA-2023:4537
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4537
11
reference_url https://access.redhat.com/errata/RHSA-2023:5361
reference_id RHSA-2023:5361
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5361
12
reference_url https://access.redhat.com/errata/RHSA-2023:5533
reference_id RHSA-2023:5533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5533
13
reference_url https://usn.ubuntu.com/6735-1/
reference_id USN-6735-1
reference_type
scores
url https://usn.ubuntu.com/6735-1/
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30590
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e7u5-356v-jbg7
5
url VCID-nenk-4cgd-fugv
vulnerability_id VCID-nenk-4cgd-fugv
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27983.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27983.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-27983
reference_id
reference_type
scores
0
value 0.75933
scoring_system epss
scoring_elements 0.98922
published_at 2026-04-21T12:55:00Z
1
value 0.75933
scoring_system epss
scoring_elements 0.98907
published_at 2026-04-02T12:55:00Z
2
value 0.75933
scoring_system epss
scoring_elements 0.98909
published_at 2026-04-04T12:55:00Z
3
value 0.75933
scoring_system epss
scoring_elements 0.98911
published_at 2026-04-07T12:55:00Z
4
value 0.75933
scoring_system epss
scoring_elements 0.98912
published_at 2026-04-09T12:55:00Z
5
value 0.75933
scoring_system epss
scoring_elements 0.98914
published_at 2026-04-12T12:55:00Z
6
value 0.75933
scoring_system epss
scoring_elements 0.98915
published_at 2026-04-13T12:55:00Z
7
value 0.75933
scoring_system epss
scoring_elements 0.98917
published_at 2026-04-16T12:55:00Z
8
value 0.75933
scoring_system epss
scoring_elements 0.98919
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-27983
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27983
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27983
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068347
reference_id 1068347
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068347
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2272764
reference_id 2272764
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2272764
6
reference_url https://hackerone.com/reports/2319584
reference_id 2319584
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-09T19:14:56Z/
url https://hackerone.com/reports/2319584
7
reference_url https://security.archlinux.org/AVG-2852
reference_id AVG-2852
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2852
8
reference_url https://security.archlinux.org/AVG-2853
reference_id AVG-2853
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2853
9
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDECX4BYZLMM4S4LALN4DPZ2HUTTPLKE/
reference_id JDECX4BYZLMM4S4LALN4DPZ2HUTTPLKE
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-09T19:14:56Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDECX4BYZLMM4S4LALN4DPZ2HUTTPLKE/
11
reference_url https://security.netapp.com/advisory/ntap-20240510-0002/
reference_id ntap-20240510-0002
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-09T19:14:56Z/
url https://security.netapp.com/advisory/ntap-20240510-0002/
12
reference_url https://access.redhat.com/errata/RHSA-2024:2778
reference_id RHSA-2024:2778
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2778
13
reference_url https://access.redhat.com/errata/RHSA-2024:2779
reference_id RHSA-2024:2779
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2779
14
reference_url https://access.redhat.com/errata/RHSA-2024:2780
reference_id RHSA-2024:2780
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2780
15
reference_url https://access.redhat.com/errata/RHSA-2024:2853
reference_id RHSA-2024:2853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2853
16
reference_url https://access.redhat.com/errata/RHSA-2024:2910
reference_id RHSA-2024:2910
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2910
17
reference_url https://access.redhat.com/errata/RHSA-2024:2937
reference_id RHSA-2024:2937
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2937
18
reference_url https://access.redhat.com/errata/RHSA-2024:3472
reference_id RHSA-2024:3472
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3472
19
reference_url https://access.redhat.com/errata/RHSA-2024:3544
reference_id RHSA-2024:3544
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3544
20
reference_url https://access.redhat.com/errata/RHSA-2024:3545
reference_id RHSA-2024:3545
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3545
21
reference_url https://access.redhat.com/errata/RHSA-2024:3553
reference_id RHSA-2024:3553
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3553
22
reference_url https://access.redhat.com/errata/RHSA-2024:4353
reference_id RHSA-2024:4353
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4353
23
reference_url https://access.redhat.com/errata/RHSA-2024:4824
reference_id RHSA-2024:4824
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:4824
24
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YDVFUH7ACZPYB3BS4SVILNOY7NQU73VW/
reference_id YDVFUH7ACZPYB3BS4SVILNOY7NQU73VW
reference_type
scores
0
value 8.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-09T19:14:56Z/
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YDVFUH7ACZPYB3BS4SVILNOY7NQU73VW/
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.20.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-27983
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nenk-4cgd-fugv
6
url VCID-vkvx-gxbu-3uau
vulnerability_id VCID-vkvx-gxbu-3uau
summary Multiple vulnerabilities have been discovered in Node.js, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22019.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-22019.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22019
reference_id
reference_type
scores
0
value 0.0038
scoring_system epss
scoring_elements 0.59513
published_at 2026-04-21T12:55:00Z
1
value 0.0038
scoring_system epss
scoring_elements 0.59493
published_at 2026-04-08T12:55:00Z
2
value 0.0038
scoring_system epss
scoring_elements 0.59506
published_at 2026-04-09T12:55:00Z
3
value 0.0038
scoring_system epss
scoring_elements 0.59525
published_at 2026-04-11T12:55:00Z
4
value 0.0038
scoring_system epss
scoring_elements 0.59509
published_at 2026-04-12T12:55:00Z
5
value 0.0038
scoring_system epss
scoring_elements 0.5949
published_at 2026-04-13T12:55:00Z
6
value 0.0038
scoring_system epss
scoring_elements 0.59524
published_at 2026-04-16T12:55:00Z
7
value 0.0038
scoring_system epss
scoring_elements 0.59529
published_at 2026-04-18T12:55:00Z
8
value 0.0038
scoring_system epss
scoring_elements 0.5945
published_at 2026-04-02T12:55:00Z
9
value 0.0038
scoring_system epss
scoring_elements 0.59475
published_at 2026-04-04T12:55:00Z
10
value 0.0038
scoring_system epss
scoring_elements 0.59442
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22019
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22019
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22019
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
reference_id 1064055
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
5
reference_url https://hackerone.com/reports/2233486
reference_id 2233486
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:15:49Z/
url https://hackerone.com/reports/2233486
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264574
reference_id 2264574
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2264574
7
reference_url https://security.gentoo.org/glsa/202505-11
reference_id GLSA-202505-11
reference_type
scores
url https://security.gentoo.org/glsa/202505-11
8
reference_url https://security.netapp.com/advisory/ntap-20240315-0004/
reference_id ntap-20240315-0004
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-07T21:15:49Z/
url https://security.netapp.com/advisory/ntap-20240315-0004/
9
reference_url https://access.redhat.com/errata/RHSA-2024:1354
reference_id RHSA-2024:1354
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1354
10
reference_url https://access.redhat.com/errata/RHSA-2024:1424
reference_id RHSA-2024:1424
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1424
11
reference_url https://access.redhat.com/errata/RHSA-2024:1438
reference_id RHSA-2024:1438
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1438
12
reference_url https://access.redhat.com/errata/RHSA-2024:1444
reference_id RHSA-2024:1444
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1444
13
reference_url https://access.redhat.com/errata/RHSA-2024:1503
reference_id RHSA-2024:1503
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1503
14
reference_url https://access.redhat.com/errata/RHSA-2024:1510
reference_id RHSA-2024:1510
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1510
15
reference_url https://access.redhat.com/errata/RHSA-2024:1678
reference_id RHSA-2024:1678
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1678
16
reference_url https://access.redhat.com/errata/RHSA-2024:1687
reference_id RHSA-2024:1687
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1687
17
reference_url https://access.redhat.com/errata/RHSA-2024:1688
reference_id RHSA-2024:1688
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1688
18
reference_url https://access.redhat.com/errata/RHSA-2024:1880
reference_id RHSA-2024:1880
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1880
19
reference_url https://access.redhat.com/errata/RHSA-2024:1932
reference_id RHSA-2024:1932
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1932
20
reference_url https://access.redhat.com/errata/RHSA-2024:2651
reference_id RHSA-2024:2651
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2651
21
reference_url https://access.redhat.com/errata/RHSA-2024:2793
reference_id RHSA-2024:2793
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2793
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.1%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.1%252Bdfsg-1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2024-22019
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vkvx-gxbu-3uau
7
url VCID-zstw-3wmu-u3c8
vulnerability_id VCID-zstw-3wmu-u3c8
summary 
llhttp vulnerable to HTTP request smuggling
The llhttp parser in the http module in Node v20.2.0 does not strictly use the CRLF sequence to delimit HTTP requests. This can lead to HTTP Request Smuggling (HRS).

The CR character (without LF) is sufficient to delimit HTTP header fields in the llhttp parser. According to RFC7230 section 3, only the CRLF sequence should delimit each header-field. This impacts all Node.js active versions: v16, v18, and, v20
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30589.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30589.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30589
reference_id
reference_type
scores
0
value 0.01916
scoring_system epss
scoring_elements 0.83351
published_at 2026-04-21T12:55:00Z
1
value 0.01916
scoring_system epss
scoring_elements 0.83349
published_at 2026-04-18T12:55:00Z
2
value 0.01916
scoring_system epss
scoring_elements 0.83275
published_at 2026-04-07T12:55:00Z
3
value 0.01916
scoring_system epss
scoring_elements 0.83348
published_at 2026-04-16T12:55:00Z
4
value 0.01916
scoring_system epss
scoring_elements 0.83313
published_at 2026-04-13T12:55:00Z
5
value 0.01916
scoring_system epss
scoring_elements 0.83317
published_at 2026-04-12T12:55:00Z
6
value 0.01916
scoring_system epss
scoring_elements 0.83323
published_at 2026-04-11T12:55:00Z
7
value 0.01916
scoring_system epss
scoring_elements 0.83308
published_at 2026-04-09T12:55:00Z
8
value 0.01916
scoring_system epss
scoring_elements 0.83299
published_at 2026-04-08T12:55:00Z
9
value 0.01916
scoring_system epss
scoring_elements 0.83261
published_at 2026-04-02T12:55:00Z
10
value 0.01916
scoring_system epss
scoring_elements 0.83276
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30589
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30589
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30589
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/nodejs/llhttp
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/nodejs/llhttp
5
reference_url https://github.com/nodejs/llhttp/releases/tag/release%2Fv8.1.1
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/nodejs/llhttp/releases/tag/release%2Fv8.1.1
6
reference_url https://hackerone.com/reports/2001873
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://hackerone.com/reports/2001873
7
reference_url https://lists.debian.org/debian-lts-announce/2024/09/msg00029.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2024/09/msg00029.html
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HMEELCREWMRT6NS7HWXLA6XFLLMO36HE
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HMEELCREWMRT6NS7HWXLA6XFLLMO36HE
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IV326O2X4BE3SINX5FJHMAKVHUAA4ZYF
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IV326O2X4BE3SINX5FJHMAKVHUAA4ZYF
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEJWL67XR67JAGEL2ZK22NA3BRKNMZNY
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UEJWL67XR67JAGEL2ZK22NA3BRKNMZNY
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCVG4TQRGTK4LKAZKVEQAUEJM7DUACYE
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCVG4TQRGTK4LKAZKVEQAUEJM7DUACYE
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEEQIN5242K5NBE2CZ4DYTNA5B4YTYE5
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEEQIN5242K5NBE2CZ4DYTNA5B4YTYE5
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VKFMKD4MJZIKFQJAAJ4VZ2FHIJ764A76
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VKFMKD4MJZIKFQJAAJ4VZ2FHIJ764A76
14
reference_url https://security.netapp.com/advisory/ntap-20230803-0009
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20230803-0009
15
reference_url https://security.netapp.com/advisory/ntap-20240621-0006
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20240621-0006
16
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
reference_id 1039990
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039990
17
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2219841
reference_id 2219841
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2219841
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-30589
reference_id CVE-2023-30589
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-30589
19
reference_url https://github.com/advisories/GHSA-cggh-pq45-6h9x
reference_id GHSA-cggh-pq45-6h9x
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cggh-pq45-6h9x
20
reference_url https://security.gentoo.org/glsa/202405-29
reference_id GLSA-202405-29
reference_type
scores
url https://security.gentoo.org/glsa/202405-29
21
reference_url https://access.redhat.com/errata/RHSA-2023:4330
reference_id RHSA-2023:4330
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4330
22
reference_url https://access.redhat.com/errata/RHSA-2023:4331
reference_id RHSA-2023:4331
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4331
23
reference_url https://access.redhat.com/errata/RHSA-2023:4536
reference_id RHSA-2023:4536
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4536
24
reference_url https://access.redhat.com/errata/RHSA-2023:4537
reference_id RHSA-2023:4537
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4537
25
reference_url https://access.redhat.com/errata/RHSA-2023:5361
reference_id RHSA-2023:5361
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5361
26
reference_url https://access.redhat.com/errata/RHSA-2023:5533
reference_id RHSA-2023:5533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5533
27
reference_url https://usn.ubuntu.com/6735-1/
reference_id USN-6735-1
reference_type
scores
url https://usn.ubuntu.com/6735-1/
fixed_packages
0
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-38k9-23j3-eqh7
3
vulnerability VCID-43sf-4r41-wugc
4
vulnerability VCID-96yh-1wub-zucg
5
vulnerability VCID-98fy-tedc-ube7
6
vulnerability VCID-bjza-25hu-vkad
7
vulnerability VCID-dgkh-jdah-wfh9
8
vulnerability VCID-dt7u-3usg-9uet
9
vulnerability VCID-kj75-vmwa-gqgq
10
vulnerability VCID-sag8-repb-g3f4
11
vulnerability VCID-twc8-ewm7-wkb1
12
vulnerability VCID-u8bq-8jp4-jkem
13
vulnerability VCID-v7uy-445x-tuan
14
vulnerability VCID-x1an-pjq4-nbby
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie
1
url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie
2
url pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
purl pkg:deb/debian/nodejs@18.13.0%2Bdfsg1-1.1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.13.0%252Bdfsg1-1.1%3Fdistro=trixie
3
url pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.19.0%2Bdfsg-6~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.19.0%252Bdfsg-6~deb12u1%3Fdistro=trixie
4
url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vp3-fzdr-yqbm
1
vulnerability VCID-2t7c-dju9-pff6
2
vulnerability VCID-43sf-4r41-wugc
3
vulnerability VCID-96yh-1wub-zucg
4
vulnerability VCID-98fy-tedc-ube7
5
vulnerability VCID-bjza-25hu-vkad
6
vulnerability VCID-dgkh-jdah-wfh9
7
vulnerability VCID-dt7u-3usg-9uet
8
vulnerability VCID-twc8-ewm7-wkb1
9
vulnerability VCID-u8bq-8jp4-jkem
10
vulnerability VCID-v7uy-445x-tuan
11
vulnerability VCID-wf5t-3pwz-c7d7
12
vulnerability VCID-x1an-pjq4-nbby
13
vulnerability VCID-xkpz-pb5y-jqcy
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie
6
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie
7
url pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie
aliases CVE-2023-30589, GHSA-cggh-pq45-6h9x
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zstw-3wmu-u3c8
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u5%3Fdistro=trixie