Search for packages
| purl | pkg:rpm/redhat/nodejs@1:16.18.1-3?arch=el9_1 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-dfdy-vhdd-5kh4
Aliases: CVE-2022-35256 |
Multiple vulnerabilities have been discovered in Node.js. | There are no reported fixed by versions. |
|
VCID-m7rw-arzq-jba1
Aliases: CVE-2022-43548 |
Multiple vulnerabilities have been discovered in Node.js. | There are no reported fixed by versions. |
|
VCID-turp-dju7-c7fx
Aliases: CVE-2021-44906 GHSA-xvch-5gv4-984h |
Prototype Pollution in minimist Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95). | There are no reported fixed by versions. |
|
VCID-v72h-ew1u-xfcz
Aliases: CVE-2022-3517 GHSA-f8q6-p94x-37v3 |
minimatch ReDoS vulnerability A vulnerability was found in the minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T13:59:44.552754+00:00 | RedHat Importer | Affected by | VCID-v72h-ew1u-xfcz | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3517.json | 38.0.0 |
| 2026-04-01T13:59:19.887021+00:00 | RedHat Importer | Affected by | VCID-turp-dju7-c7fx | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44906.json | 38.0.0 |
| 2026-04-01T13:57:02.467848+00:00 | RedHat Importer | Affected by | VCID-dfdy-vhdd-5kh4 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-35256.json | 38.0.0 |
| 2026-04-01T13:56:29.394774+00:00 | RedHat Importer | Affected by | VCID-m7rw-arzq-jba1 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-43548.json | 38.0.0 |