Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-43sf-4r41-wugc

Summary nodejs: Nodejs filesystem permissions bypass

Aliases

alias	CVE-2025-55132

Fixed_packages

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.0-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.0-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.0-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=aarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=aarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=aarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=riscv64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=riscv64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=riscv64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=s390x&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=s390x&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=s390x&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86_64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86_64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=x86_64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=armhf&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=armhf&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=armhf&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=armv7&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=armv7&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=armv7&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@22.22.2-r0?arch=ppc64le&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/nodejs@22.22.2-r0?arch=ppc64le&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@22.22.2-r0%3Farch=ppc64le&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/nodejs@24.13.0-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nodejs@24.13.0-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:deb/debian/nodejs@0?distro=trixie
purl	pkg:deb/debian/nodejs@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@0%3Fdistro=trixie

url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie

purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-38k9-23j3-eqh7

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-kj75-vmwa-gqgq

vulnerability	VCID-sag8-repb-g3f4

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-x1an-pjq4-nbby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie

url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie

purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-wf5t-3pwz-c7d7

vulnerability	VCID-x1an-pjq4-nbby

vulnerability	VCID-xkpz-pb5y-jqcy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1
purl	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1

url	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@20.19.2%252Bdfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
purl	pkg:deb/debian/nodejs@22.22.0%2Bdfsg%2B~cs22.19.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.0%252Bdfsg%252B~cs22.19.6-1%3Fdistro=trixie

url	pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
purl	pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-1%3Fdistro=trixie

url	pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
purl	pkg:deb/debian/nodejs@22.22.2%2Bdfsg%2B~cs22.19.15-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@22.22.2%252Bdfsg%252B~cs22.19.15-3%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4

purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-2z1f-7jkw-17av

vulnerability	VCID-38k9-23j3-eqh7

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-9yq7-aba3-c7c3

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-bx67-aud6-b3fa

vulnerability	VCID-c8xz-v6h3-6ueb

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-e6gj-fe31-kkh5

vulnerability	VCID-e7u5-356v-jbg7

vulnerability	VCID-kj75-vmwa-gqgq

vulnerability	VCID-nenk-4cgd-fugv

vulnerability	VCID-sag8-repb-g3f4

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-vkvx-gxbu-3uau

vulnerability	VCID-wf5t-3pwz-c7d7

vulnerability	VCID-x1an-pjq4-nbby

vulnerability	VCID-zstw-3wmu-u3c8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4

url pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie

purl pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-38k9-23j3-eqh7

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-kj75-vmwa-gqgq

vulnerability	VCID-sag8-repb-g3f4

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-x1an-pjq4-nbby

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@12.22.12~dfsg-1~deb11u4%3Fdistro=trixie

url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1

purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-wf5t-3pwz-c7d7

vulnerability	VCID-x1an-pjq4-nbby

vulnerability	VCID-xkpz-pb5y-jqcy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1

url pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie

purl pkg:deb/debian/nodejs@18.20.4%2Bdfsg-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vp3-fzdr-yqbm

vulnerability	VCID-2t7c-dju9-pff6

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-96yh-1wub-zucg

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-dgkh-jdah-wfh9

vulnerability	VCID-dt7u-3usg-9uet

vulnerability	VCID-twc8-ewm7-wkb1

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-wf5t-3pwz-c7d7

vulnerability	VCID-x1an-pjq4-nbby

vulnerability	VCID-xkpz-pb5y-jqcy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nodejs@18.20.4%252Bdfsg-1~deb12u1%3Fdistro=trixie

url pkg:rpm/redhat/nodejs22@1:22.22.0-3?arch=el10_1

purl pkg:rpm/redhat/nodejs22@1:22.22.0-3?arch=el10_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-x1an-pjq4-nbby

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nodejs22@1:22.22.0-3%3Farch=el10_1

url pkg:rpm/redhat/nodejs24@1:24.13.0-1?arch=el10_1

purl pkg:rpm/redhat/nodejs24@1:24.13.0-1?arch=el10_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43sf-4r41-wugc

vulnerability	VCID-98fy-tedc-ube7

vulnerability	VCID-bjza-25hu-vkad

vulnerability	VCID-u8bq-8jp4-jkem

vulnerability	VCID-v7uy-445x-tuan

vulnerability	VCID-x1an-pjq4-nbby

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nodejs24@1:24.13.0-1%3Farch=el10_1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55132.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-55132

reference_id

reference_type

scores

value	0.0001
scoring_system	epss
scoring_elements	0.01084
published_at	2026-04-02T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01068
published_at	2026-04-16T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.0108
published_at	2026-04-11T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01073
published_at	2026-04-12T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01075
published_at	2026-04-13T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01085
published_at	2026-04-04T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01091
published_at	2026-04-07T12:55:00Z

value	0.0001
scoring_system	epss
scoring_elements	0.01096
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-55132

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55132

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2431338
reference_id	2431338
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2431338

reference_url

https://nodejs.org/en/blog/vulnerability/december-2025-security-releases

reference_id

december-2025-security-releases

reference_type

scores

value	2.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T18:38:44Z/

url

https://nodejs.org/en/blog/vulnerability/december-2025-security-releases

reference_url	https://access.redhat.com/errata/RHSA-2026:1842
reference_id	RHSA-2026:1842
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1842

reference_url	https://access.redhat.com/errata/RHSA-2026:1843
reference_id	RHSA-2026:1843
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1843

reference_url	https://access.redhat.com/errata/RHSA-2026:2420
reference_id	RHSA-2026:2420
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2420

reference_url	https://access.redhat.com/errata/RHSA-2026:2421
reference_id	RHSA-2026:2421
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2421

reference_url	https://access.redhat.com/errata/RHSA-2026:2422
reference_id	RHSA-2026:2422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2422

reference_url	https://access.redhat.com/errata/RHSA-2026:2781
reference_id	RHSA-2026:2781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2781

reference_url	https://access.redhat.com/errata/RHSA-2026:2782
reference_id	RHSA-2026:2782
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2782

reference_url	https://access.redhat.com/errata/RHSA-2026:2783
reference_id	RHSA-2026:2783
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2783

Weaknesses

cwe_id	281
name	Improper Preservation of Permissions
description	The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

Exploits

Severity_range_score 2.8 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-43sf-4r41-wugc

Vulnerability Instance