Homepage

nodejs-packaging vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the nodejs-packaging package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
CVE-2024-36137

<0:2021.06-4.module+el8.10.0+1667+4a788d89
  • M
CVE-2024-28863

<0:2021.06-4.module+el8.10.0+1667+4a788d89
  • M
CVE-2024-22020

<0:2021.06-4.module+el8.10.0+1667+4a788d89
  • M
CVE-2024-22018

<0:2021.06-4.module+el8.10.0+1667+4a788d89
  • H
CVE-2024-28182

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-27983

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-27982

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-25629

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-22025

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-22017

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-21896

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-21891

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-21890

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-22019

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2024-21892

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2023-46809

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Information Exposure

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2023-39333

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Directory Traversal

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Directory Traversal

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Insufficient Verification of Data Authenticity

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2023-44487

<0:26-1.module+el8.8.0+1461+f50bb75a
  • M
CVE-2023-30590

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • M
CVE-2023-30589

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • M
CVE-2023-30588

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • M
CVE-2023-30581

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Use of Insufficiently Random Values

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Out-of-bounds Write

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Use of Insufficiently Random Values

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
CVE-2023-32067

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Improper Input Validation

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • M
Inefficient Regular Expression Complexity

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • M
Arbitrary Code Injection

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Untrusted Search Path

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • M
CVE-2023-23919

<0:25-1.module+el8.6.0+1046+80feca58
  • H
Incorrect Authorization

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • H
Improper Validation of Specified Quantity in Input

<0:2021.06-4.module+el8.7.0+1072+5b168780
  • H
Inefficient Regular Expression Complexity

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • H
Inefficient Regular Expression Complexity

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Improper Privilege Management

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Directory Traversal

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Symlink Following

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Resource Exhaustion

<0:17-3.module+el8.3.0+101+f84c7154
  • H
CVE-2019-15606

<0:17-3.module+el8.3.0+101+f84c7154
  • H
HTTP Request Smuggling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Improper Certificate Validation

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Resource Exhaustion

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Arbitrary Argument Injection

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Improper Input Validation

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Integer Underflow

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Improper Certificate Validation

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
HTTP Request Smuggling

<0:17-3.module+el8.3.0+101+f84c7154
  • M
HTTP Request Smuggling

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Use After Free

<0:17-3.module+el8.3.0+101+f84c7154
  • M
CVE-2020-7754

<0:17-3.module+el8.3.0+101+f84c7154
  • H
CVE-2021-22884

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Missing Release of Resource after Effective Lifetime

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Directory Traversal

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Directory Traversal

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Information Exposure

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improper Certificate Validation

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improper Certificate Validation

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improper Certificate Validation

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
OS Command Injection

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Inefficient Regular Expression Complexity

<0:23-3.module+el8.7.0+1071+4bdda2a8
  • H
Integer Overflow or Wraparound

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • H
CVE-2019-9513

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Allocation of Resources Without Limits or Throttling

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Buffer Overflow

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Information Exposure Through Log Files

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Improper Enforcement of Message or Data Structure

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Resource Exhaustion

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
CVE-2021-27290

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Inefficient Regular Expression Complexity

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Out-of-bounds Read

<0:17-3.module+el8.3.0+101+f84c7154
  • H
Directory Traversal

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Link Following

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
CVE-2021-23343

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Use After Free

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Improper Certificate Validation

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Improper Input Validation

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Use After Free

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Cross-site Scripting (XSS)

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:25-1.module+el8.5.0+702+221f14e6
  • M
Inefficient Regular Expression Complexity

<0:25-1.module+el8.5.0+702+221f14e6
  • M
Inefficient Regular Expression Complexity

<0:25-1.module+el8.5.0+702+221f14e6
  • M
HTTP Request Smuggling

<0:25-1.module+el8.5.0+702+221f14e6
  • M
HTTP Request Smuggling

<0:25-1.module+el8.5.0+702+221f14e6
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:17-3.module+el8.3.0+101+f84c7154
  • M
Resource Exhaustion

<0:25-1.module+el8.5.0+702+221f14e6
  • H
Insufficient Verification of Data Authenticity

<0:25-1.module+el8.5.0+702+221f14e6
  • M
CVE-2022-33987

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
HTTP Request Smuggling

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
HTTP Request Smuggling

<0:23-3.module+el8.5.0+733+de4fee6c
  • M
HTTP Request Smuggling

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
HTTP Request Smuggling

<0:25-1.module+el8.5.0+702+221f14e6
  • M
OS Command Injection

<0:23-3.module+el8.5.0+733+de4fee6c
  • H
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

<0:25-1.module+el8.5.0+702+221f14e6
  • M
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0:23-3.module+el8.5.0+733+de4fee6c