Node.js Multiple Vulnerabilities

Release Date: 15 Feb 2024 4499 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities have been identified in Node.js. A remote attacker can exploit these vulnerabilities to trigger denial of service, security restriction bypass, elevation of privilege and sensitive information disclosure on the targeted system.

Impact

  • Security Restriction Bypass
  • Information Disclosure
  • Denial of Service
  • Elevation of Privilege

System / Technologies affected

  • Node.js versions prior to 18.19.1 (LTS)
  • Node.js versions prior to 20.11.1 (LTS)
  • Node.js versions prior to 21.6.2 (Current)

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Update to Node.js version 18.19.1 (LTS)
  • Update to Node.js version 20.11.1 (LTS) 
  • Update to Node.js version 21.6.2 (Current)

Vulnerability Identifier

Source

Related Link

Related Tags

Node.jsDenial of ServiceSecurity Restriction BypassInformation DisclosureElevation of Privilege

Share with

Previous

QNAP NAS Remote Code Execution Vulnerabilities

14 Feb 2024 3662 Views

Next

Ivanti Products Security Restriction Bypass Vulnerability

9 Feb 2024 3815 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY