nodejs-full-i18n vulnerabilities

Known vulnerabilities in the nodejs-full-i18n package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L Inefficient Regular Expression Complexity	*
L Inefficient Regular Expression Complexity	*
M HTTP Request Smuggling	<1:20.19.2-1.module+el9.6.0+23146+be9976bd
H Uncaught Exception	<1:22.16.0-1.module+el9.6.0+23151+b1496e9d
H Memory Leak	<1:22.16.0-1.module+el9.6.0+23151+b1496e9d
L Memory Leak	*
H Heap-based Buffer Overflow	<1:22.15.0-1.module+el9.6.0+23062+9e7801b9
M Integer Overflow or Wraparound	*
H Use After Free	<1:22.15.0-1.module+el9.6.0+23062+9e7801b9
H Resource Exhaustion	<1:22.13.1-1.module+el9.5.0+22763+17233acb
H Use of Insufficiently Random Values	<1:22.13.1-1.module+el9.5.0+22763+17233acb
H Incorrect Authorization	<1:22.13.1-1.module+el9.5.0+22763+17233acb
M Resource Exhaustion	<1:18.20.4-1.module+el9.4.0+22195+c221878e
M Incorrect Permission Assignment for Critical Resource	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
M CVE-2024-22020	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
M CVE-2024-22018	<1:20.16.0-1.module+el9.4.0+22197+9e60f127
H HTTP Request Smuggling	<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7
H Detection of Error Condition Without Action	<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7
H Resource Exhaustion	<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7
H Resource Exhaustion	<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7
H Buffer Under-read	<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7
H Improper Privilege Management	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
M Incomplete Documentation	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
M Directory Traversal	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Directory Traversal	<1:20.11.1-1.module+el9.3.0+21385+bac43d5a
H Resource Exhaustion	<1:16.20.2-4.el9_3
H Arbitrary Code Injection	<1:18.19.1-1.module+el9.3.0+21388+22892fb9
H Covert Timing Channel	<1:18.19.1-1.module+el9.3.0+21388+22892fb9
M Server-Side Request Forgery (SSRF)	*
H Information Exposure	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
H Improper Validation of Integrity Check Value	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
L Arbitrary Code Injection	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
H Directory Traversal	<1:20.9.0-1.module+el9.3.0.z+20633+3a660725
H Resource Exhaustion	<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
H Arbitrary Code Injection	<1:16.20.2-1.el9_2
H Information Exposure	<1:16.20.2-1.el9_2
H Information Exposure	<1:16.20.2-1.el9_2
H Inefficient Regular Expression Complexity	<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
M CVE-2023-30588	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30589	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30581	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
M CVE-2023-30590	<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
H Out-of-bounds Write	<1:18.14.2-3.module+el9.2.0.z+18964+42696395
H Use of Insufficiently Random Values	<1:18.14.2-3.module+el9.2.0.z+18964+42696395
H Resource Exhaustion	<1:18.14.2-3.module+el9.2.0.z+18964+42696395
H Use of Insufficiently Random Values	<1:18.14.2-3.module+el9.2.0.z+18964+42696395
M Inefficient Regular Expression Complexity	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M CRLF Injection	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Untrusted Search Path	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M CVE-2023-23919	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Incorrect Authorization	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Improper Input Validation	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Inefficient Regular Expression Complexity	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Resource Exhaustion	<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
M Reliance on Reverse DNS Resolution for a Security-Critical Action	<1:16.18.1-3.el9_1
M Inefficient Regular Expression Complexity	<1:16.18.1-3.el9_1
H Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	<1:16.17.1-1.el9_0
M HTTP Request Smuggling	<1:16.18.1-3.el9_1
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M Improper Check or Handling of Exceptional Conditions	<1:16.16.0-1.el9_0
M HTTP Request Smuggling	<1:16.16.0-1.el9_0
M Open Redirect	<1:16.16.0-1.el9_0
M Improper Cross-boundary Removal of Sensitive Data	<1:16.16.0-1.el9_0
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<1:16.18.1-3.el9_1
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Resource Exhaustion	<1:16.16.0-1.el9_0
M Allocation of Resources Without Limits or Throttling	*
M Resource Exhaustion	<1:16.16.0-1.el9_0

Vulnerability

Vulnerable Version

Inefficient Regular Expression Complexity

HTTP Request Smuggling

<1:20.19.2-1.module+el9.6.0+23146+be9976bd

Uncaught Exception

<1:22.16.0-1.module+el9.6.0+23151+b1496e9d

Memory Leak

<1:22.16.0-1.module+el9.6.0+23151+b1496e9d

Memory Leak

Heap-based Buffer Overflow

<1:22.15.0-1.module+el9.6.0+23062+9e7801b9

Integer Overflow or Wraparound

Use After Free

<1:22.15.0-1.module+el9.6.0+23062+9e7801b9

Resource Exhaustion

<1:22.13.1-1.module+el9.5.0+22763+17233acb

Use of Insufficiently Random Values

<1:22.13.1-1.module+el9.5.0+22763+17233acb

Incorrect Authorization

<1:22.13.1-1.module+el9.5.0+22763+17233acb

Resource Exhaustion

<1:18.20.4-1.module+el9.4.0+22195+c221878e

Incorrect Permission Assignment for Critical Resource

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

CVE-2024-22020

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

CVE-2024-22018

<1:20.16.0-1.module+el9.4.0+22197+9e60f127

HTTP Request Smuggling

<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7

Detection of Error Condition Without Action

<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7

Resource Exhaustion

<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7

Resource Exhaustion

<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7

Buffer Under-read

<1:20.12.2-2.module+el9.4.0+21731+46b5b8a7

Improper Privilege Management

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Incomplete Documentation

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Directory Traversal

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Directory Traversal

<1:20.11.1-1.module+el9.3.0+21385+bac43d5a

Resource Exhaustion

<1:16.20.2-4.el9_3

Arbitrary Code Injection

<1:18.19.1-1.module+el9.3.0+21388+22892fb9

Covert Timing Channel

<1:18.19.1-1.module+el9.3.0+21388+22892fb9

Server-Side Request Forgery (SSRF)

Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Directory Traversal

<1:20.9.0-1.module+el9.3.0.z+20633+3a660725

Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5

Arbitrary Code Injection

<1:16.20.2-1.el9_2

Information Exposure

<1:16.20.2-1.el9_2

Information Exposure

<1:16.20.2-1.el9_2

Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0

CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07

Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395

Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395

Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395

Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395

Inefficient Regular Expression Complexity