Vulnerability-Lookup

CVE-2021-43803 (GCVE-0-2021-43803)

Vulnerability from cvelistv5 – Published: 2021-12-09 23:50 – Updated: 2024-08-04 04:03

Title

Unexpected server crash in Next.js

Summary

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-20 - Improper Input Validation

Assigner

GitHub_M

References

URL

Tags

	https://github.com/vercel/next.js/security/adviso…	x_refsource_CONFIRM
	https://github.com/vercel/next.js/pull/32080	x_refsource_MISC
	https://github.com/vercel/next.js/commit/6d98b4fb…	x_refsource_MISC
	https://github.com/vercel/next.js/releases/tag/v11.1.3	x_refsource_MISC
	https://github.com/vercel/next.js/releases/v12.0.5	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	vercel	next.js	Affected: >= 11.1.0, < 11.1.3 Affected: >= 12.0.0, < 12.0.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T04:03:08.709Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/vercel/next.js/pull/32080"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/vercel/next.js/releases/v12.0.5"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "next.js",
          "vendor": "vercel",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 11.1.0, \u003c 11.1.3"
            },
            {
              "status": "affected",
              "version": "\u003e= 12.0.0, \u003c 12.0.5"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20: Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-12-09T23:50:10.000Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/vercel/next.js/pull/32080"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/vercel/next.js/releases/v12.0.5"
        }
      ],
      "source": {
        "advisory": "GHSA-25mp-g6fv-mqxx",
        "discovery": "UNKNOWN"
      },
      "title": "Unexpected server crash in Next.js",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-43803",
          "STATE": "PUBLIC",
          "TITLE": "Unexpected server crash in Next.js"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "next.js",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003e= 11.1.0, \u003c 11.1.3"
                          },
                          {
                            "version_value": "\u003e= 12.0.0, \u003c 12.0.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "vercel"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20: Improper Input Validation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx",
              "refsource": "CONFIRM",
              "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
            },
            {
              "name": "https://github.com/vercel/next.js/pull/32080",
              "refsource": "MISC",
              "url": "https://github.com/vercel/next.js/pull/32080"
            },
            {
              "name": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264",
              "refsource": "MISC",
              "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
            },
            {
              "name": "https://github.com/vercel/next.js/releases/tag/v11.1.3",
              "refsource": "MISC",
              "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
            },
            {
              "name": "https://github.com/vercel/next.js/releases/v12.0.5",
              "refsource": "MISC",
              "url": "https://github.com/vercel/next.js/releases/v12.0.5"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-25mp-g6fv-mqxx",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-43803",
    "datePublished": "2021-12-09T23:50:10.000Z",
    "dateReserved": "2021-11-16T00:00:00.000Z",
    "dateUpdated": "2024-08-04T04:03:08.709Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*\", \"versionStartIncluding\": \"11.1.0\", \"versionEndExcluding\": \"11.1.3\", \"matchCriteriaId\": \"D413EFEB-941C-4FDD-BA04-32B7902BCFE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*\", \"versionStartIncluding\": \"12.0.0\", \"versionEndExcluding\": \"12.0.5\", \"matchCriteriaId\": \"C1457A80-9287-4C15-9AF3-8CE57500C4AA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*\", \"versionStartExcluding\": \"15.0.0\", \"matchCriteriaId\": \"2B44D2C4-15DF-4918-B374-3C780CC43ACC\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.\"}, {\"lang\": \"es\", \"value\": \"Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\\u00e1lidas o malformadas podr\\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\\u00e1n afectados, junto con entornos similares en los que las peticiones no v\\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema\"}]",
      "id": "CVE-2021-43803",
      "lastModified": "2024-11-21T06:29:49.447",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:P\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-12-10T00:15:11.827",
      "references": "[{\"url\": \"https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/pull/32080\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/releases/tag/v11.1.3\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/releases/v12.0.5\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/pull/32080\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/releases/tag/v11.1.3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/releases/v12.0.5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "security-advisories@github.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-43803\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2021-12-10T00:15:11.827\",\"lastModified\":\"2024-11-21T06:29:49.447\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.\"},{\"lang\":\"es\",\"value\":\"Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\u00e1lidas o malformadas podr\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\u00e1n afectados, junto con entornos similares en los que las peticiones no v\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"11.1.0\",\"versionEndExcluding\":\"11.1.3\",\"matchCriteriaId\":\"D413EFEB-941C-4FDD-BA04-32B7902BCFE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndExcluding\":\"12.0.5\",\"matchCriteriaId\":\"C1457A80-9287-4C15-9AF3-8CE57500C4AA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*\",\"versionStartExcluding\":\"15.0.0\",\"matchCriteriaId\":\"2B44D2C4-15DF-4918-B374-3C780CC43ACC\"}]}]}],\"references\":[{\"url\":\"https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/pull/32080\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/releases/tag/v11.1.3\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/releases/v12.0.5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/pull/32080\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/releases/tag/v11.1.3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/releases/v12.0.5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}"
  }
}

cleanstart-2026-jy06700

Vulnerability from cleanstart

Published

2026-02-27 01:09

Modified

2026-02-26 12:09

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-JY06700",
  "modified": "2026-02-26T12:09:56Z",
  "published": "2026-02-27T01:09:46.914639Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-JY06700"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-bd71263

Vulnerability from cleanstart

Published

2026-04-01 09:17

Modified

2026-03-26 17:04

Summary

Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-BD71263",
  "modified": "2026-03-26T17:04:08Z",
  "published": "2026-04-01T09:17:26.065920Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-BD71263.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-kz45320

Vulnerability from cleanstart

Published

2026-04-01 09:16

Modified

2026-03-26 18:22

Summary

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-KZ45320",
  "modified": "2026-03-26T18:22:34Z",
  "published": "2026-04-01T09:16:45.727713Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-KZ45320.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-jr35772

Vulnerability from cleanstart

Published

2026-04-01 09:17

Modified

2026-03-26 15:01

Summary

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-JR35772",
  "modified": "2026-03-26T15:01:29Z",
  "published": "2026-04-01T09:17:37.864227Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-JR35772.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-ln12820

Vulnerability from cleanstart

Published

2026-02-19 00:58

Modified

2026-02-18 09:40

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-LN12820",
  "modified": "2026-02-18T09:40:19Z",
  "published": "2026-02-19T00:58:49.154512Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-LN12820"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-kn34553

Vulnerability from cleanstart

Published

2026-02-19 00:58

Modified

2026-02-18 09:40

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-KN34553",
  "modified": "2026-02-18T09:40:19Z",
  "published": "2026-02-19T00:58:48.926519Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-KN34553"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-wi75198

Vulnerability from cleanstart

Published

2026-01-30 17:34

Modified

2026-01-29 18:58

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-WI75198",
  "modified": "2026-01-29T18:58:54Z",
  "published": "2026-01-30T17:34:27.754206Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-WI75198.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-is74202

Vulnerability from cleanstart

Published

2026-04-01 09:09

Modified

2026-03-31 04:38

Summary

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-IS74202",
  "modified": "2026-03-31T04:38:08Z",
  "published": "2026-04-01T09:09:55.185988Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-IS74202.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

GHSA-25MP-G6FV-MQXX

Vulnerability from github – Published: 2021-12-07 21:12 – Updated: 2024-03-13 22:14

Summary

Unexpected server crash in Next.js.

Details

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "npm",
        "name": "next"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "12.0.0"
            },
            {
              "fixed": "12.0.5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "npm",
        "name": "next"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0.9.9"
            },
            {
              "fixed": "11.1.3"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2021-43803"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2021-12-06T19:17:55Z",
    "nvd_published_at": "2021-12-10T00:15:00Z",
    "severity": "HIGH"
  },
  "details": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue. Note that prior version 0.9.9 package `next` hosted a different utility (0.4.1 being the latest version of that codebase), and this advisory does not apply to those versions. ",
  "id": "GHSA-25mp-g6fv-mqxx",
  "modified": "2024-03-13T22:14:17Z",
  "published": "2021-12-07T21:12:09Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/vercel/next.js"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Unexpected server crash in Next.js."
}

GSD-2021-43803

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2021-43803

Aliases

CVE-2021-43803

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-43803",
    "description": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.",
    "id": "GSD-2021-43803"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-43803"
      ],
      "details": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.",
      "id": "GSD-2021-43803",
      "modified": "2023-12-13T01:23:26.420010Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2021-43803",
        "STATE": "PUBLIC",
        "TITLE": "Unexpected server crash in Next.js"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "next.js",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "\u003e= 11.1.0, \u003c 11.1.3"
                        },
                        {
                          "version_value": "\u003e= 12.0.0, \u003c 12.0.5"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "vercel"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-20: Improper Input Validation"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx",
            "refsource": "CONFIRM",
            "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          },
          {
            "name": "https://github.com/vercel/next.js/pull/32080",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/pull/32080"
          },
          {
            "name": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
          },
          {
            "name": "https://github.com/vercel/next.js/releases/tag/v11.1.3",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
          },
          {
            "name": "https://github.com/vercel/next.js/releases/v12.0.5",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/releases/v12.0.5"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-25mp-g6fv-mqxx",
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003e=11.1.0 \u003c11.1.3||\u003e=12.0.0 \u003c12.0.5",
          "affected_versions": "All versions starting from 11.1.0 before 11.1.3, all versions starting from 12.0.0 before 12.0.5",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-937"
          ],
          "date": "2022-02-17",
          "description": "Next handling invalid or malformed URLs could lead to a server crash. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js.",
          "fixed_versions": [
            "11.1.3",
            "12.0.5"
          ],
          "identifier": "CVE-2021-43803",
          "identifiers": [
            "CVE-2021-43803",
            "GHSA-25mp-g6fv-mqxx"
          ],
          "not_impacted": "All versions before 11.1.0, all versions starting from 11.1.3 before 12.0.0, all versions starting from 12.0.5",
          "package_slug": "npm/next",
          "pubdate": "2021-12-10",
          "solution": "Upgrade to versions 11.1.3, 12.0.5 or above.",
          "title": "Improper Input Validation",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2021-43803",
            "https://github.com/vercel/next.js/releases/v12.0.5",
            "https://github.com/vercel/next.js/pull/32080",
            "https://github.com/vercel/next.js/releases/tag/v11.1.3",
            "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264",
            "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          ],
          "uuid": "f0815d0b-7f16-479f-8cfe-a091a85302da"
        }
      ]
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
                    "matchCriteriaId": "D413EFEB-941C-4FDD-BA04-32B7902BCFE7",
                    "versionEndExcluding": "11.1.3",
                    "versionStartIncluding": "11.1.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
                    "matchCriteriaId": "C1457A80-9287-4C15-9AF3-8CE57500C4AA",
                    "versionEndExcluding": "12.0.5",
                    "versionStartIncluding": "12.0.0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "2B44D2C4-15DF-4918-B374-3C780CC43ACC",
                    "versionStartExcluding": "15.0.0",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
          },
          {
            "lang": "es",
            "value": "Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\u00e1lidas o malformadas podr\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\u00e1n afectados, junto con entornos similares en los que las peticiones no v\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema"
          }
        ],
        "id": "CVE-2021-43803",
        "lastModified": "2024-03-12T16:03:46.020",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "MEDIUM",
              "cvssData": {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              "exploitabilityScore": 8.6,
              "impactScore": 2.9,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary",
              "userInteractionRequired": false
            }
          ],
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 3.6,
              "source": "security-advisories@github.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2021-12-10T00:15:11.827",
        "references": [
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/pull/32080"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Release Notes",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Release Notes",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/releases/v12.0.5"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          }
        ],
        "sourceIdentifier": "security-advisories@github.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-20"
              }
            ],
            "source": "security-advisories@github.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

FKIE_CVE-2021-43803

Vulnerability from fkie_nvd - Published: 2021-12-10 00:15 - Updated: 2024-11-21 06:29

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
security-advisories@github.com	https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/pull/32080	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/releases/tag/v11.1.3	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/releases/v12.0.5	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/pull/32080	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/releases/tag/v11.1.3	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/releases/v12.0.5	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx	Patch, Third Party Advisory

Impacted products

Vendor	Product	Version
vercel	next.js	*
vercel	next.js	*
nodejs	node.js	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "D413EFEB-941C-4FDD-BA04-32B7902BCFE7",
              "versionEndExcluding": "11.1.3",
              "versionStartIncluding": "11.1.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "C1457A80-9287-4C15-9AF3-8CE57500C4AA",
              "versionEndExcluding": "12.0.5",
              "versionStartIncluding": "12.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B44D2C4-15DF-4918-B374-3C780CC43ACC",
              "versionStartExcluding": "15.0.0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
    },
    {
      "lang": "es",
      "value": "Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\u00e1lidas o malformadas podr\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\u00e1n afectados, junto con entornos similares en los que las peticiones no v\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema"
    }
  ],
  "id": "CVE-2021-43803",
  "lastModified": "2024-11-21T06:29:49.447",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2021-12-10T00:15:11.827",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2023-AVI-0705

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.0.3 sans le correctif de sécurité iFix08
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.0.3 sans le correctif de sécurité iFix 08
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.1.0 sans le correctif de sécurité GA
IBM	QRadar User Behavior Analytics	IBM QRadar User Behavior Analytics versions antérieures à 4.1.13
IBM	Tivoli Monitoring	IBM Tivoli Monitoring versions 6.x.x antérieures à 6.3.0.7 Plus Service Pack 5
IBM	Cloud Pak	IBM Cognos Dashboards on Cloud Pak for Data versions 4.7.x antérieures à 4.7.2
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.1.0 sans le correctif de sécurité iFix 04

References

Title

Publication Time

Tags

Bulletin de sécurité IBM 7029765 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029766 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7027925 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029732 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029864 du 31 août 2023	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Sterling Secure Proxy versions versions ant\u00e9rieures \u00e0 6.0.3 sans le correctif de s\u00e9curit\u00e9 iFix08",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling External Authentication Server versions ant\u00e9rieures \u00e0 6.0.3 sans le correctif de s\u00e9curit\u00e9 iFix 08",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling Secure Proxy versions versions ant\u00e9rieures \u00e0 6.1.0 sans le correctif de s\u00e9curit\u00e9 GA",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM QRadar User Behavior Analytics versions ant\u00e9rieures \u00e0 4.1.13",
      "product": {
        "name": "QRadar User Behavior Analytics",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Monitoring versions 6.x.x ant\u00e9rieures \u00e0 6.3.0.7 Plus Service Pack 5",
      "product": {
        "name": "Tivoli Monitoring",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Cognos Dashboards on Cloud Pak for Data versions 4.7.x ant\u00e9rieures \u00e0 4.7.2",
      "product": {
        "name": "Cloud Pak",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling External Authentication Server versions ant\u00e9rieures \u00e0 6.1.0 sans le correctif de s\u00e9curit\u00e9 iFix 04",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-21938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
    },
    {
      "name": "CVE-2022-32213",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
    },
    {
      "name": "CVE-2023-32697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32697"
    },
    {
      "name": "CVE-2022-46175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46175"
    },
    {
      "name": "CVE-2020-28498",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-28498"
    },
    {
      "name": "CVE-2023-37920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
    },
    {
      "name": "CVE-2023-21939",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
    },
    {
      "name": "CVE-2023-27554",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-27554"
    },
    {
      "name": "CVE-2023-1436",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-1436"
    },
    {
      "name": "CVE-2021-23440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23440"
    },
    {
      "name": "CVE-2022-25883",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
    },
    {
      "name": "CVE-2020-13936",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
    },
    {
      "name": "CVE-2023-26049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26049"
    },
    {
      "name": "CVE-2023-32342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32342"
    },
    {
      "name": "CVE-2022-40149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40149"
    },
    {
      "name": "CVE-2022-39161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39161"
    },
    {
      "name": "CVE-2021-43803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43803"
    },
    {
      "name": "CVE-2022-32222",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
    },
    {
      "name": "CVE-2023-24966",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24966"
    },
    {
      "name": "CVE-2022-32212",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
    },
    {
      "name": "CVE-2022-40150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40150"
    },
    {
      "name": "CVE-2022-40609",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40609"
    },
    {
      "name": "CVE-2023-26920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26920"
    },
    {
      "name": "CVE-2021-33813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33813"
    },
    {
      "name": "CVE-2022-45693",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-45693"
    },
    {
      "name": "CVE-2023-35890",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-35890"
    },
    {
      "name": "CVE-2022-3517",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
    },
    {
      "name": "CVE-2023-21937",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
    },
    {
      "name": "CVE-2022-32215",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
    },
    {
      "name": "CVE-2021-3803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3803"
    },
    {
      "name": "CVE-2023-2597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
    },
    {
      "name": "CVE-2023-29261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-29261"
    },
    {
      "name": "CVE-2021-37699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37699"
    },
    {
      "name": "CVE-2023-34104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-34104"
    },
    {
      "name": "CVE-2022-45685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-45685"
    },
    {
      "name": "CVE-2023-25690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-25690"
    },
    {
      "name": "CVE-2023-21968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
    },
    {
      "name": "CVE-2022-32214",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32214"
    },
    {
      "name": "CVE-2022-38900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-38900"
    },
    {
      "name": "CVE-2023-21930",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
    },
    {
      "name": "CVE-2023-24998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
    },
    {
      "name": "CVE-2023-22874",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22874"
    },
    {
      "name": "CVE-2023-26136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
    },
    {
      "name": "CVE-2023-26048",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26048"
    },
    {
      "name": "CVE-2023-32338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32338"
    },
    {
      "name": "CVE-2022-25858",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-25858"
    }
  ],
  "links": [],
  "reference": "CERTFR-2023-AVI-0705",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-09-01T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029765 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029765"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029766 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029766"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7027925 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7027925"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029732 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029732"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029864 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029864"
    }
  ]
}

CERTFR-2023-AVI-0705

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.0.3 sans le correctif de sécurité iFix08
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.0.3 sans le correctif de sécurité iFix 08
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.1.0 sans le correctif de sécurité GA
IBM	QRadar User Behavior Analytics	IBM QRadar User Behavior Analytics versions antérieures à 4.1.13
IBM	Tivoli Monitoring	IBM Tivoli Monitoring versions 6.x.x antérieures à 6.3.0.7 Plus Service Pack 5
IBM	Cloud Pak	IBM Cognos Dashboards on Cloud Pak for Data versions 4.7.x antérieures à 4.7.2
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.1.0 sans le correctif de sécurité iFix 04

References

Title

Publication Time

Tags

Bulletin de sécurité IBM 7029765 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029766 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7027925 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029732 du 31 août 2023	None	vendor-advisory
Bulletin de sécurité IBM 7029864 du 31 août 2023	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Sterling Secure Proxy versions versions ant\u00e9rieures \u00e0 6.0.3 sans le correctif de s\u00e9curit\u00e9 iFix08",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling External Authentication Server versions ant\u00e9rieures \u00e0 6.0.3 sans le correctif de s\u00e9curit\u00e9 iFix 08",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling Secure Proxy versions versions ant\u00e9rieures \u00e0 6.1.0 sans le correctif de s\u00e9curit\u00e9 GA",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM QRadar User Behavior Analytics versions ant\u00e9rieures \u00e0 4.1.13",
      "product": {
        "name": "QRadar User Behavior Analytics",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli Monitoring versions 6.x.x ant\u00e9rieures \u00e0 6.3.0.7 Plus Service Pack 5",
      "product": {
        "name": "Tivoli Monitoring",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Cognos Dashboards on Cloud Pak for Data versions 4.7.x ant\u00e9rieures \u00e0 4.7.2",
      "product": {
        "name": "Cloud Pak",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Sterling External Authentication Server versions ant\u00e9rieures \u00e0 6.1.0 sans le correctif de s\u00e9curit\u00e9 iFix 04",
      "product": {
        "name": "Sterling",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-21938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
    },
    {
      "name": "CVE-2022-32213",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
    },
    {
      "name": "CVE-2023-32697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32697"
    },
    {
      "name": "CVE-2022-46175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46175"
    },
    {
      "name": "CVE-2020-28498",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-28498"
    },
    {
      "name": "CVE-2023-37920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
    },
    {
      "name": "CVE-2023-21939",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
    },
    {
      "name": "CVE-2023-27554",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-27554"
    },
    {
      "name": "CVE-2023-1436",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-1436"
    },
    {
      "name": "CVE-2021-23440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-23440"
    },
    {
      "name": "CVE-2022-25883",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
    },
    {
      "name": "CVE-2020-13936",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
    },
    {
      "name": "CVE-2023-26049",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26049"
    },
    {
      "name": "CVE-2023-32342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32342"
    },
    {
      "name": "CVE-2022-40149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40149"
    },
    {
      "name": "CVE-2022-39161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39161"
    },
    {
      "name": "CVE-2021-43803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43803"
    },
    {
      "name": "CVE-2022-32222",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
    },
    {
      "name": "CVE-2023-24966",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24966"
    },
    {
      "name": "CVE-2022-32212",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
    },
    {
      "name": "CVE-2022-40150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40150"
    },
    {
      "name": "CVE-2022-40609",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-40609"
    },
    {
      "name": "CVE-2023-26920",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26920"
    },
    {
      "name": "CVE-2021-33813",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-33813"
    },
    {
      "name": "CVE-2022-45693",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-45693"
    },
    {
      "name": "CVE-2023-35890",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-35890"
    },
    {
      "name": "CVE-2022-3517",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-3517"
    },
    {
      "name": "CVE-2023-21937",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
    },
    {
      "name": "CVE-2022-32215",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
    },
    {
      "name": "CVE-2021-3803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3803"
    },
    {
      "name": "CVE-2023-2597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
    },
    {
      "name": "CVE-2023-29261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-29261"
    },
    {
      "name": "CVE-2021-37699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-37699"
    },
    {
      "name": "CVE-2023-34104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-34104"
    },
    {
      "name": "CVE-2022-45685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-45685"
    },
    {
      "name": "CVE-2023-25690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-25690"
    },
    {
      "name": "CVE-2023-21968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
    },
    {
      "name": "CVE-2022-32214",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-32214"
    },
    {
      "name": "CVE-2022-38900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-38900"
    },
    {
      "name": "CVE-2023-21930",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
    },
    {
      "name": "CVE-2023-24998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
    },
    {
      "name": "CVE-2023-22874",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22874"
    },
    {
      "name": "CVE-2023-26136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
    },
    {
      "name": "CVE-2023-26048",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-26048"
    },
    {
      "name": "CVE-2023-32338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32338"
    },
    {
      "name": "CVE-2022-25858",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-25858"
    }
  ],
  "links": [],
  "reference": "CERTFR-2023-AVI-0705",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-09-01T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eles produits IBM\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029765 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029765"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029766 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029766"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7027925 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7027925"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029732 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029732"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 7029864 du 31 ao\u00fbt 2023",
      "url": "https://www.ibm.com/support/pages/node/7029864"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-43803 (GCVE-0-2021-43803)

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Solution

Solution

Tags

Sightings

Nomenclature