nodejs Summary
Latest vulnerabilities published by nodejs
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Security Flaw in Node.js Permission Model Allows Unauthorized Socket Connections
CVE-2026-21636NodejsNode5.8MEDIUMDenial-of-Service Vulnerability in Node.js Affects Multiple Versions
CVE-2025-59466NodejsNode5.9MEDIUMPermission Model Flaw in Node.js Affects File Metadata Management
CVE-2025-55132NodejsNode2.8LOWMemory Leak Vulnerability in Node.js Affected by OpenSSL Integration
CVE-2025-59464NodejsNode6.5MEDIUMMemory Exposure in Node.js due to Buffer Allocation Issues
CVE-2025-55131NodejsNode7.1HIGHNode.js Permissions Model Vulnerability in Multiple Versions
CVE-2025-55130NodejsNodeπΎπ‘7.1HIGHTLS Error Handling Vulnerability in Node.js Affecting Remote Servers
CVE-2026-21637NodejsNode5.9MEDIUMRemote Denial of Service Vulnerability in Node.js Application
CVE-2025-59465NodejsNode7.5HIGHExcessive Resource Consumption in Undici HTTP Client for Node.js
CVE-2026-22036NodejsUndici5.9MEDIUMNode.js Vulnerability Affecting Windows Device Names
CVE-2025-27210NodejsNodeπΎπ‘7.5HIGHHash Collision Vulnerability in Node.js by Joyent
CVE-2025-27209NodejsNode7.5HIGHMemory Leak Vulnerability in Node.js Affects Version 20 and 22
CVE-2025-23165NodejsNode3.7LOWNode.js Software Vulnerability Allowing Remote Crash via User Inputs
CVE-2025-23166NodejsNode7.5HIGHHTTP Parser Flaw in Node.js 20 Allows Request Smuggling
CVE-2025-23167NodejsNodeπΎπ‘6.5MEDIUMMemory Leak Vulnerability in Undici HTTP Client for Node.js
CVE-2025-47279NodejsUndici3.1LOWMemory Leak in HTTP/2 Server on Node.js Affects Multiple Versions
CVE-2025-23085NodejsNode5.3MEDIUMNode.js Vulnerability Impacting Windows Drive Name Handling
CVE-2025-23084NodejsNode5.5MEDIUMNode.js Worker Thread Vulnerability in Diagnostics Channel Utility
CVE-2025-23083NodejsNode7.7HIGHHTTP Client Vulnerability in Undici Affecting Node.js Applications
CVE-2025-22150NodejsUndici6.8MEDIUMPath Traversal Vulnerability in Open-Source Software Affecting Various Applications
CVE-2024-37372NodejsNodeNode.js vulnerable to Marvin Attack due to unpatched OpenSSL
CVE-2023-46809NodejsNode7.4HIGHArbitrary Code Execution through Improper Handling of Batch Files
CVE-2024-36138NodejsNodeπ°8.1HIGHMaliciously crafted WebAssembly module can inject JavaScript code, potentially exposing sensitive data
CVE-2023-39333NodejsNode5.3MEDIUMVulnerability Identified in Node.js Experimental Permission Model
CVE-2024-36137NodejsNode3.3LOWExperimental Permission Model Vulnerability in Node.js version 20
CVE-2023-30582NodejsNode5.3MEDIUM