nodejs:18/nodejs/.../nodejs vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the nodejs:18/nodejs package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Resource Exhaustion

<1:18.20.4-1.module+el9.4.0+22195+c221878e
  • M
CVE-2024-22020

<1:18.20.4-1.module+el9.4.0+22195+c221878e
  • H
Detection of Error Condition Without Action

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
HTTP Request Smuggling

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Buffer Under-read

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • M
Resource Exhaustion

<1:18.20.4-1.module+el9.4.0+22195+c221878e
  • M
CVE-2024-22020

<1:18.20.4-1.module+el9.4.0+22195+c221878e
  • H
Resource Exhaustion

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Arbitrary Code Injection

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Covert Timing Channel

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • M
CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • H
Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CRLF Injection

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Untrusted Search Path

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CVE-2023-23919

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Incorrect Authorization

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Improper Input Validation

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Resource Exhaustion

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Reliance on Reverse DNS Resolution for a Security-Critical Action

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Inefficient Regular Expression Complexity

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • H
Arbitrary Code Injection

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Detection of Error Condition Without Action

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Detection of Error Condition Without Action

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Detection of Error Condition Without Action

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.2.0+21812+f1e61652
  • H
Resource Exhaustion

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Arbitrary Code Injection

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Covert Timing Channel

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Resource Exhaustion

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Arbitrary Code Injection

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Covert Timing Channel

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Resource Exhaustion

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Arbitrary Code Injection

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
Covert Timing Channel

<1:18.19.1-1.module+el9.2.0+21594+a052107e
  • H
HTTP Request Smuggling

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Detection of Error Condition Without Action

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Resource Exhaustion

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Buffer Under-read

<1:18.20.2-2.module+el9.4.0+21742+692df1ea
  • H
Resource Exhaustion

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Arbitrary Code Injection

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Covert Timing Channel

<1:18.19.1-1.module+el9.3.0+21388+22892fb9
  • H
Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Information Exposure

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Improper Validation of Integrity Check Value

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Resource Exhaustion

<1:18.18.2-2.module+el9.2.0.z+20408+7cb5fda5
  • H
Arbitrary Code Injection

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Arbitrary Code Injection

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Arbitrary Code Injection

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Arbitrary Code Injection

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Information Exposure

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • H
Inefficient Regular Expression Complexity

<1:18.17.1-1.module+el9.2.0.z+19753+58118bc0
  • M
CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30588

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30589

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30581

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • M
CVE-2023-30590

<1:18.16.1-1.module+el9.2.0.z+19424+78951f07
  • H
Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Out-of-bounds Write

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Resource Exhaustion

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • H
Use of Insufficiently Random Values

<1:18.14.2-3.module+el9.2.0.z+18964+42696395
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CRLF Injection

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CRLF Injection

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CRLF Injection

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CRLF Injection

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Untrusted Search Path

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Untrusted Search Path

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Untrusted Search Path

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Untrusted Search Path

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CVE-2023-23919

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CVE-2023-23919

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CVE-2023-23919

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
CVE-2023-23919

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Incorrect Authorization

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Incorrect Authorization

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Incorrect Authorization

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Incorrect Authorization

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Improper Input Validation

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Improper Input Validation

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Improper Input Validation

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Improper Input Validation

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Inefficient Regular Expression Complexity

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Resource Exhaustion

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Resource Exhaustion

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Resource Exhaustion

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Resource Exhaustion

<1:18.14.2-2.module+el9.2.0.z+18497+a402347c
  • M
Reliance on Reverse DNS Resolution for a Security-Critical Action

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Reliance on Reverse DNS Resolution for a Security-Critical Action

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Reliance on Reverse DNS Resolution for a Security-Critical Action

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Reliance on Reverse DNS Resolution for a Security-Critical Action

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Inefficient Regular Expression Complexity

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Inefficient Regular Expression Complexity

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Inefficient Regular Expression Complexity

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb
  • M
Inefficient Regular Expression Complexity

<1:18.12.1-1.module+el9.1.0.z+17326+318294bb