nodejs24 | Snyk

Direct Vulnerabilities

Known vulnerabilities in the nodejs24 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Allocation of Resources Without Limits or Throttling	*
H Improper Preservation of Permissions	*
H Exposure of System Data to an Unauthorized Control Sphere	*
M Improper Preservation of Permissions	*
M Inefficient Regular Expression Complexity	<1:24.14.1-2.el10_1
L Direct Request ('Forced Browsing')	<1:24.14.1-2.el10_1
H Allocation of Resources Without Limits or Throttling	<1:24.14.1-2.el10_1
M Allocation of Resources Without Limits or Throttling	<1:24.14.1-2.el10_1
H Reachable Assertion	<1:24.14.1-2.el10_1
M Missing Release of Resource after Effective Lifetime	<1:24.14.1-2.el10_1
M Reversible One-Way Hash	<1:24.14.1-2.el10_1
M Improper Handling of Inconsistent Special Elements	<1:24.14.1-2.el10_1
M Information Exposure	<1:24.14.1-2.el10_1
M Improper Verification of Source of a Communication Channel	<1:24.14.1-2.el10_1
L Incorrect Execution-Assigned Permissions	<1:24.14.1-2.el10_1
M HTTP Request Smuggling	<1:24.14.1-2.el10_1
M CRLF Injection	<1:24.14.1-2.el10_1
H Access of Resource Using Incompatible Type ('Type Confusion')	<1:24.14.1-2.el10_1
H Uncaught Exception	<1:24.14.1-2.el10_1
H Uncaught Exception	<1:24.14.1-2.el10_1
M Improper Handling of Highly Compressed Data (Data Amplification)	<1:24.14.1-2.el10_1
M Reversible One-Way Hash	*
L Direct Request ('Forced Browsing')	*
H Access of Resource Using Incompatible Type ('Type Confusion')	*
L Incorrect Execution-Assigned Permissions	*
M Improper Handling of Inconsistent Special Elements	*
M Missing Release of Resource after Effective Lifetime	*
M Reversible One-Way Hash	*
M Information Exposure	*
M Inefficient Regular Expression Complexity	*
M Executable Regular Expression Error	*
H Reachable Assertion	*
M HTTP Request Smuggling	*
H Uncaught Exception	*
H Allocation of Resources Without Limits or Throttling	*
M CRLF Injection	*
H Uncaught Exception	*
M Allocation of Resources Without Limits or Throttling	*
M Inefficient Regular Expression Complexity	*
M Inefficient Regular Expression Complexity	*
L Allocation of Resources Without Limits or Throttling	*
M Inefficient Regular Expression Complexity	*
M Time-of-check Time-of-use (TOCTOU)	*
M Improper Handling of Highly Compressed Data (Data Amplification)	*
M Uncaught Exception	<1:24.13.0-1.el10_1
M Improper Preservation of Permissions	<1:24.13.0-1.el10_1
H Improper Preservation of Permissions	<1:24.13.0-1.el10_1
M Allocation of Resources Without Limits or Throttling	<1:24.13.0-1.el10_1
H Uncaught Exception	<1:24.13.0-1.el10_1
H Exposure of System Data to an Unauthorized Control Sphere	<1:24.13.0-1.el10_1
M Use After Free	*
M OS Command Injection	*

Vulnerability

Vulnerable Version

Allocation of Resources Without Limits or Throttling