Direct Vulnerabilities

Known vulnerabilities in the nodejs24 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • H
Inefficient Regular Expression Complexity

<0:24.18.0-0.2.hum1
  • H
Inefficient Regular Expression Complexity

*
  • M
Information Exposure

*
  • M
Information Exposure

<0:24.18.0-0.1.hum1
  • H
Authentication Bypass

*
  • H
Authentication Bypass

<0:24.18.0-0.1.hum1
  • H
Allocation of Resources Without Limits or Throttling

*
  • H
Allocation of Resources Without Limits or Throttling

<0:24.18.0-0.1.hum1
  • M
Improper Null Termination

*
  • M
Improper Null Termination

*
  • M
Authentication Bypass

*
  • M
Authentication Bypass

*
  • L
Incorrect Use of Privileged APIs

<0:24.18.0-0.2.hum1
  • L
Incorrect Use of Privileged APIs

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Certificate Validation

*
  • M
Improper Certificate Validation

*
  • L
Incorrect Execution-Assigned Permissions

*
  • L
Incorrect Execution-Assigned Permissions

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Resource Exhaustion

<0:24.16.0-1.hum1
  • H
Improper Verification of Source of a Communication Channel

*
  • H
Improper Verification of Source of a Communication Channel

*
  • L
Improper Verification of Source of a Communication Channel

*
  • L
Improper Verification of Source of a Communication Channel

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • H
Allocation of Resources Without Limits or Throttling

*
  • H
Improper Certificate Validation

*
  • H
Improper Certificate Validation

*
  • L
Improper Validation of Syntactic Correctness of Input

*
  • L
Improper Validation of Syntactic Correctness of Input

*
  • M
Improper Validation of Syntactic Correctness of Input

*
  • M
Improper Validation of Syntactic Correctness of Input

*
  • M
CRLF Injection

*
  • M
CRLF Injection

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
CRLF Injection

*
  • H
Cross-site Scripting (XSS)

*
  • M
Unchecked Input for Loop Condition

*
  • L
Incorrect Execution-Assigned Permissions

<0:24.14.1-4.hum1
  • M
Improper Preservation of Permissions

<0:24.14.1-4.hum1
  • M
Uncaught Exception

<0:24.14.1-4.hum1
  • M
Allocation of Resources Without Limits or Throttling

<0:24.14.1-4.hum1
  • H
Uncaught Exception

<0:24.14.1-4.hum1
  • M
Allocation of Resources Without Limits or Throttling

<0:24.14.1-4.hum1
  • H
Improper Preservation of Permissions

<0:24.14.1-4.hum1
  • H
Exposure of System Data to an Unauthorized Control Sphere

<0:24.14.1-4.hum1
  • M
Improper Preservation of Permissions

<0:24.14.1-4.hum1
  • M
Inefficient Regular Expression Complexity

<1:24.14.1-2.el10_1
  • L
Direct Request ('Forced Browsing')

<1:24.14.1-2.el10_1
  • H
Allocation of Resources Without Limits or Throttling

<1:24.14.1-2.el10_1
  • M
Allocation of Resources Without Limits or Throttling

<1:24.14.1-2.el10_1
  • H
Reachable Assertion

<1:24.14.1-2.el10_1
  • M
Missing Release of Resource after Effective Lifetime

<1:24.14.1-2.el10_1
  • M
Reversible One-Way Hash

<1:24.14.1-2.el10_1
  • M
Improper Handling of Inconsistent Special Elements

<1:24.14.1-2.el10_1
  • M
Information Exposure

<1:24.14.1-2.el10_1
  • M
Improper Verification of Source of a Communication Channel

<1:24.14.1-2.el10_1
  • L
Incorrect Execution-Assigned Permissions

<1:24.14.1-2.el10_1
  • M
HTTP Request Smuggling

<1:24.14.1-2.el10_1
  • M
CRLF Injection

<1:24.14.1-2.el10_1
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<1:24.14.1-2.el10_1
  • H
Uncaught Exception

<1:24.14.1-2.el10_1
  • H
Uncaught Exception

<1:24.14.1-2.el10_1
  • M
Improper Handling of Highly Compressed Data (Data Amplification)

<1:24.14.1-2.el10_1
  • M
Reversible One-Way Hash

<0:24.14.1-4.hum1
  • M
Inefficient Regular Expression Complexity

*
  • M
Executable Regular Expression Error

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Inefficient Regular Expression Complexity

*
  • L
Allocation of Resources Without Limits or Throttling

*
  • M
Time-of-check Time-of-use (TOCTOU)

*
  • M
Uncaught Exception

<1:24.13.0-1.el10_1
  • M
Improper Preservation of Permissions

<1:24.13.0-1.el10_1
  • H
Improper Preservation of Permissions

<1:24.13.0-1.el10_1
  • M
Allocation of Resources Without Limits or Throttling

<1:24.13.0-1.el10_1
  • H
Uncaught Exception

<1:24.13.0-1.el10_1
  • H
Exposure of System Data to an Unauthorized Control Sphere

<1:24.13.0-1.el10_1
  • M
Use After Free

*
  • L
OS Command Injection

*