VulnerableCode Vulnerability Details

System	Score	Found at
cvssv3	7.1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15605.json
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.32252	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.43322	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.43322	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.43322	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
epss	0.43322	https://api.first.org/data/v1/epss?cve=CVE-2019-15605
cvssv3.1	7.1	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2	7.5	https://nvd.nist.gov/vuln/detail/CVE-2019-15605
cvssv3.1	9.8	https://nvd.nist.gov/vuln/detail/CVE-2019-15605

System

Score

Found at

cvssv3

7.1

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15605.json

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.32252

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.43322

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.43322

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.43322

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

epss

0.43322

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

cvssv3.1

7.1

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

cvssv2

7.5

https://nvd.nist.gov/vuln/detail/CVE-2019-15605

cvssv3.1

9.8

https://nvd.nist.gov/vuln/detail/CVE-2019-15605

Reference id	Reference type	URL
		http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00008.html
		https://access.redhat.com/errata/RHSA-2020:0573
		https://access.redhat.com/errata/RHSA-2020:0579
		https://access.redhat.com/errata/RHSA-2020:0597
		https://access.redhat.com/errata/RHSA-2020:0598
		https://access.redhat.com/errata/RHSA-2020:0602
		https://access.redhat.com/errata/RHSA-2020:0703
		https://access.redhat.com/errata/RHSA-2020:0707
		https://access.redhat.com/errata/RHSA-2020:0708
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15605.json
		https://api.first.org/data/v1/epss?cve=CVE-2019-15605
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://hackerone.com/reports/735748
		https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CT3WTR4P5VAJ3GJGKPYEDUPTNZ3IEDUR/
		https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLB676PDU4RJQLWQUA277YNGYYNEYGWO/
		https://nodejs.org/en/blog/release/v10.19.0/
		https://nodejs.org/en/blog/release/v12.15.0/
		https://nodejs.org/en/blog/release/v13.8.0/
		https://nodejs.org/en/blog/vulnerability/february-2020-security-releases/
		https://security.gentoo.org/glsa/202003-48
		https://security.netapp.com/advisory/ntap-20200221-0004/
		https://www.debian.org/security/2020/dsa-4669
		https://www.oracle.com/security-alerts/cpuapr2020.html
		https://www.oracle.com//security-alerts/cpujul2021.html
1800364		https://bugzilla.redhat.com/show_bug.cgi?id=1800364
977467		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977467
cpe:2.3:a:nodejs:node.js:::::-:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::-:::*
cpe:2.3:a:nodejs:node.js:::::lts:::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:::::lts:::*
cpe:2.3:a:oracle:graalvm:19.3.1::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:19.3.1::::enterprise:::
cpe:2.3:a:oracle:graalvm:20.0.0::::enterprise:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.0.0::::enterprise:::
cpe:2.3:a:redhat:software_collections:1.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:software_collections:1.0:::::::*
cpe:2.3:o:debian:debian_linux:10.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*
cpe:2.3:o:fedoraproject:fedora:30:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:::::::*
cpe:2.3:o:opensuse:leap:15.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*
cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:8.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
CVE-2019-15605		https://nvd.nist.gov/vuln/detail/CVE-2019-15605
RHSA-2020:1510		https://access.redhat.com/errata/RHSA-2020:1510
USN-6380-1		https://usn.ubuntu.com/6380-1/

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00008.html

https://access.redhat.com/errata/RHSA-2020:0573

https://access.redhat.com/errata/RHSA-2020:0579

https://access.redhat.com/errata/RHSA-2020:0597

https://access.redhat.com/errata/RHSA-2020:0598

https://access.redhat.com/errata/RHSA-2020:0602

https://access.redhat.com/errata/RHSA-2020:0703

https://access.redhat.com/errata/RHSA-2020:0707

https://access.redhat.com/errata/RHSA-2020:0708

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15605.json

https://api.first.org/data/v1/epss?cve=CVE-2019-15605

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15604

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15605

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15606

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9511

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9513

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9514

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

https://hackerone.com/reports/735748

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CT3WTR4P5VAJ3GJGKPYEDUPTNZ3IEDUR/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLB676PDU4RJQLWQUA277YNGYYNEYGWO/

https://nodejs.org/en/blog/release/v10.19.0/

https://nodejs.org/en/blog/release/v12.15.0/

https://nodejs.org/en/blog/release/v13.8.0/

https://nodejs.org/en/blog/vulnerability/february-2020-security-releases/

https://security.gentoo.org/glsa/202003-48

https://security.netapp.com/advisory/ntap-20200221-0004/

https://www.debian.org/security/2020/dsa-4669

https://www.oracle.com/security-alerts/cpuapr2020.html

https://www.oracle.com//security-alerts/cpujul2021.html

1800364

https://bugzilla.redhat.com/show_bug.cgi?id=1800364

977467

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977467

cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*

cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*

cpe:2.3:a:oracle:graalvm:19.3.1:*:*:*:enterprise:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:19.3.1:*:*:*:enterprise:*:*:*

cpe:2.3:a:oracle:graalvm:20.0.0:*:*:*:enterprise:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:graalvm:20.0.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

CVE-2019-15605

https://nvd.nist.gov/vuln/detail/CVE-2019-15605

RHSA-2020:1510

https://access.redhat.com/errata/RHSA-2020:1510

USN-6380-1

https://usn.ubuntu.com/6380-1/

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15605.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2019-15605

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2019-15605

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:28:42.083574+00:00	Alpine Linux Importer	Import	https://secdb.alpinelinux.org/v3.20/community.json	37.0.0

2025-07-31T08:28:42.083574+00:00

Alpine Linux Importer

Import

https://secdb.alpinelinux.org/v3.20/community.json

37.0.0

Vulnerability ID	VCID-2a49-wha4-zyba
Aliases	CVE-2019-15605
Summary	HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed
Status	Published
Exploitability	0.5
Weighted Severity	8.8
Risk	4.4
Affected and Fixed Packages	Package Details

Percentile	0.96658
EPSS Score	0.32252
Published At	Aug. 5, 2025, 12:55 p.m.