Node.js Multiple Vulnerabilities
Release Date:
2 Sep 2021
6330
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities have been identified in Node.js, a remote attacker can exploit these vulnerabilities to trigger remote code execution, security restriction bypass and tampering on the targeted system.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Data Manipulation
System / Technologies affected
- Node.js versions prior to v12.22.6 (LTS)
- Node.js versions prior to v14.17.6 (LTS)
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases2/
Vulnerability Identifier
Source
Related Link
https://nodejs.org/en/blog/vulnerability/aug-2021-security-releases2/
Share with