Node.js Multiple Vulnerabilities

Release Date: 10 Aug 2023 4356 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities have been identified in Node.js. A remote attacker can exploit these vulnerabilities to trigger remote code execution, security restriction bypass and sensitive information disclosure on the targeted system.

Impact

  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Node.js versions prior to 16.20.2 (LTS)
  • Node.js versions prior to 18.17.1 (LTS)
  • Node.js versions prior to 20.5.1

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Update to Node.js version 16.20.2 (LTS)
  • Update to Node.js version 18.17.1 (LTS)
  • Update to Node.js version 20.5.1

Vulnerability Identifier

Source

Related Link

Related Tags

Node.jsRemote Code ExecutionSecurity Restriction BypassInformation Disclosure

Share with

Previous

Adobe Monthly Security Update (August 2023)

9 Aug 2023 3641 Views

Next

Python Remote Code Execution Vulnerability

14 Aug 2023 4621 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY