nodejs Summary
Latest vulnerabilities published by nodejs
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Node.js Vulnerability Affecting Windows Device Names
CVE-2025-27210NodejsNodeπΎπ‘7.5HIGHHash Collision Vulnerability in Node.js by Joyent
CVE-2025-27209NodejsNode7.5HIGHMemory Leak Vulnerability in Node.js Affects Version 20 and 22
CVE-2025-23165NodejsNode3.7LOWNode.js Software Vulnerability Allowing Remote Crash via User Inputs
CVE-2025-23166NodejsNode7.5HIGHHTTP Parser Flaw in Node.js 20 Allows Request Smuggling
CVE-2025-23167NodejsNodeπΎπ‘6.5MEDIUMMemory Leak Vulnerability in Undici HTTP Client for Node.js
CVE-2025-47279NodejsUndici3.1LOWMemory Leak in HTTP/2 Server on Node.js Affects Multiple Versions
CVE-2025-23085NodejsNode5.3MEDIUMNode.js Vulnerability Impacting Windows Drive Name Handling
CVE-2025-23084NodejsNode5.5MEDIUMNode.js Worker Thread Vulnerability in Diagnostics Channel Utility
CVE-2025-23083NodejsNode7.7HIGHHTTP Client Vulnerability in Undici Affecting Node.js Applications
CVE-2025-22150NodejsUndici6.8MEDIUMPath Traversal Vulnerability in Open-Source Software Affecting Various Applications
CVE-2024-37372NodejsNodeNode.js vulnerable to Marvin Attack due to unpatched OpenSSL
CVE-2023-46809NodejsNode7.4HIGHArbitrary Code Execution through Improper Handling of Batch Files
CVE-2024-36138NodejsNodeπ°8.1HIGHMaliciously crafted WebAssembly module can inject JavaScript code, potentially exposing sensitive data
CVE-2023-39333NodejsNode5.3MEDIUMVulnerability Identified in Node.js Experimental Permission Model
CVE-2024-36137NodejsNode3.3LOWExperimental Permission Model Vulnerability in Node.js version 20
CVE-2023-30582NodejsNode5.3MEDIUMNode.js version 20 vulnerability allows bypassing restrictions through inspector module
CVE-2023-30587NodejsNode7.5HIGHfs.openAsBlob() Vulnerability Allows Bypass of Experimental Permission Model in Node.js 20
CVE-2023-30583NodejsNode7.5HIGHNode.js Version 20 Vulnerability Affects Experimental Permission Model
CVE-2023-30584NodejsNode7.7HIGHPatched Memory Leak in Undici HTTP/1.1 Client
CVE-2024-38372NodejsUndici2LOWHTTP Request Smuggling Vulnerability in Node.js Core HTTP Server
CVE-2024-27982NodejsNode6.5MEDIUMAttacker Can Cause Complete Unavailability of Node.js HTTP/2 Server with Small Amount of Frames
CVE-2024-27983NodejsNodeπΎπ‘EPSS 72%8.2HIGHUndici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline
CVE-2024-30260NodejsUndici3.9LOWUndici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect
CVE-2024-30261NodejsUndici2.6LOWNode.js fetch() Function Vulnerability Allows for Denial of Service (DoS) Attacks Through Resource Exhaustion
CVE-2024-22025NodejsNode6.5MEDIUM