nodejs20-npm vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nodejs20-npm package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Inefficient Regular Expression Complexity	<1:10.8.2-1.20.18.1.1.amzn2023.0.1
M CVE-2024-22020	<1:10.8.2-1.20.18.0.1.amzn2023.0.2
M Resource Exhaustion	<1:10.8.2-1.20.18.0.1.amzn2023.0.2
M CVE-2024-22018	<1:10.8.2-1.20.18.0.1.amzn2023.0.2
M Incorrect Permission Assignment for Critical Resource	<1:10.8.2-1.20.18.0.1.amzn2023.0.2
H HTTP Request Smuggling	<1:10.5.0-1.20.12.2.1.amzn2023.0.2
H Detection of Error Condition Without Action	<1:10.5.0-1.20.12.2.1.amzn2023.0.2
H CVE-2024-30261	<1:10.5.0-1.20.12.2.1.amzn2023.0.2
H Resource Exhaustion	<1:10.5.0-1.20.12.2.1.amzn2023.0.2
M Buffer Under-read	<1:10.2.4-1.20.11.1.1.amzn2023.0.2
H Resource Exhaustion	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Improper Privilege Management	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H CVE-2024-24758	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Resource Exhaustion	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Arbitrary Code Injection	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Directory Traversal	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Directory Traversal	<1:10.2.4-1.20.11.1.1.amzn2023.0.1
H Incomplete Documentation	<1:10.2.4-1.20.11.1.1.amzn2023.0.1