nodejs-docs vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nodejs-docs package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H OS Command Injection	*
M Integer Overflow or Wraparound	*
M Integer Overflow or Wraparound	*
H Numeric Truncation Error	<1:22.16.0-2.module+el9.6.0+23339+d3c8acfa
L Inefficient Regular Expression Complexity	*
L Inefficient Regular Expression Complexity	*
H HTTP Request Smuggling	<1:20.19.2-1.module+el9.6.0+23146+be9976bd
H Uncaught Exception	<1:20.19.2-1.module+el9.6.0+23146+be9976bd
H Memory Leak	<1:20.19.2-1.module+el9.6.0+23146+be9976bd
L Memory Leak	*
H Heap-based Buffer Overflow	<1:22.15.0-1.module+el9.6.0+23062+9e7801b9
M Integer Overflow or Wraparound	*
M Use After Free	<1:20.19.1-1.module+el9.6.0+23053+4195b0b2
H Resource Exhaustion	<1:20.18.2-1.module+el9.5.0+22758+4ad2c198
H Use of Insufficiently Random Values	<1:20.18.2-1.module+el9.5.0+22758+4ad2c198
H Incorrect Authorization	<1:20.18.2-1.module+el9.5.0+22758+4ad2c198
M Resource Exhaustion	<1:18.20.4-1.module+el9.4.0+22195+c221878e
M Incorrect Permission Assignment for Critical Resource	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
M CVE-2024-22020	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
M CVE-2024-22018	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
H HTTP Request Smuggling	<1:16.20.2-8.el9_4
H Detection of Error Condition Without Action	<1:16.20.2-8.el9_4
H Resource Exhaustion	<1:16.20.2-8.el9_4
H Resource Exhaustion	<1:16.20.2-8.el9_4
H Buffer Under-read	<1:16.20.2-8.el9_4
H Improper Privilege Management	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Incomplete Documentation	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Directory Traversal	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Directory Traversal	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Resource Exhaustion	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Arbitrary Code Injection	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Covert Timing Channel	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
M Server-Side Request Forgery (SSRF)	*
H Information Exposure	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
H Improper Validation of Integrity Check Value	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
L Arbitrary Code Injection	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
H Directory Traversal	<1:20.8.1-1.module+el9.3.0.z+20478+84a9f781
H Resource Exhaustion	<1:16.20.2-3.el9_2
H Arbitrary Code Injection	<1:16.20.2-1.el9_2
H Information Exposure	<1:16.20.2-1.el9_2
H Information Exposure	<1:16.20.2-1.el9_2
H Inefficient Regular Expression Complexity	<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
M CVE-2023-30588	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30589	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30581	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30590	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
H Out-of-bounds Write	<1:16.19.1-2.el9_2
H Use of Insufficiently Random Values	<1:16.19.1-2.el9_2
H Resource Exhaustion	<1:16.19.1-2.el9_2
H Use of Insufficiently Random Values	<1:16.19.1-2.el9_2
M Inefficient Regular Expression Complexity	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M CRLF Injection	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Untrusted Search Path	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M CVE-2023-23919	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Incorrect Authorization	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Improper Input Validation	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Inefficient Regular Expression Complexity	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Resource Exhaustion	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Reliance on Reverse DNS Resolution for a Security-Critical Action	<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
M Inefficient Regular Expression Complexity	<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
H Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	<1:16.17.1-1.el9_0
M HTTP Request Smuggling	<1:16.17.1-1.el9_0
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M Improper Check or Handling of Exceptional Conditions	<1:16.16.0-1.el9_0
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M Open Redirect	<1:16.16.0-1.el9_0
M Improper Cross-boundary Removal of Sensitive Data	<1:16.16.0-1.el9_0
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<1:16.18.1-3.el9_1
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Allocation of Resources Without Limits or Throttling	*
M Resource Exhaustion	<1:16.16.0-1.el9_0

Vulnerability

Vulnerable Version

OS Command Injection

Integer Overflow or Wraparound

Numeric Truncation Error

<1:22.16.0-2.module+el9.6.0+23339+d3c8acfa

Inefficient Regular Expression Complexity

HTTP Request Smuggling

<1:20.19.2-1.module+el9.6.0+23146+be9976bd

Uncaught Exception

<1:20.19.2-1.module+el9.6.0+23146+be9976bd

Memory Leak

<1:20.19.2-1.module+el9.6.0+23146+be9976bd

Memory Leak

Heap-based Buffer Overflow

<1:22.15.0-1.module+el9.6.0+23062+9e7801b9

Integer Overflow or Wraparound

Use After Free

<1:20.19.1-1.module+el9.6.0+23053+4195b0b2

Resource Exhaustion

<1:20.18.2-1.module+el9.5.0+22758+4ad2c198

Use of Insufficiently Random Values

<1:20.18.2-1.module+el9.5.0+22758+4ad2c198

Incorrect Authorization

<1:20.18.2-1.module+el9.5.0+22758+4ad2c198

Resource Exhaustion

<1:18.20.4-1.module+el9.4.0+22195+c221878e

Incorrect Permission Assignment for Critical Resource

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

CVE-2024-22020

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

CVE-2024-22018

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

HTTP Request Smuggling

<1:16.20.2-8.el9_4

Detection of Error Condition Without Action

<1:16.20.2-8.el9_4

Resource Exhaustion

<1:16.20.2-8.el9_4

Resource Exhaustion

<1:16.20.2-8.el9_4

Buffer Under-read

<1:16.20.2-8.el9_4

Improper Privilege Management

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Incomplete Documentation

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Directory Traversal

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Directory Traversal

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Resource Exhaustion

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Arbitrary Code Injection

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Covert Timing Channel

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Server-Side Request Forgery (SSRF)

Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Directory Traversal

<1:20.8.1-1.module+el9.3.0.z+20478+84a9f781

Resource Exhaustion

<1:16.20.2-3.el9_2

Arbitrary Code Injection

<1:16.20.2-1.el9_2

Information Exposure

<1:16.20.2-1.el9_2

Information Exposure

<1:16.20.2-1.el9_2

Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0

CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

Out-of-bounds Write

<1:16.19.1-2.el9_2

Use of Insufficiently Random Values

<1:16.19.1-2.el9_2

Resource Exhaustion

<1:16.19.1-2.el9_2

Use of Insufficiently Random Values

<1:16.19.1-2.el9_2

Inefficient Regular Expression Complexity