nodejs-nodemon vulnerabilities

Known vulnerabilities in the nodejs-nodemon package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H CVE-2025-23083	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
H CVE-2025-23085	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
H Use of Insufficiently Random Values	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
M CVE-2024-28863	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
M CVE-2024-36137	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
M CVE-2024-22020	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
M CVE-2024-22018	<0:3.0.1-1.module+el9.4.0+25495+f51dca35
H CVE-2024-28182	<0:3.0.1-1.module+el9.4.0+20268+ab82f8a5
H CVE-2024-27983	<0:3.0.1-1.module+el9.4.0+20268+ab82f8a5
H CVE-2024-27982	<0:3.0.1-1.module+el9.4.0+20268+ab82f8a5
H Out-of-bounds Read	<0:3.0.1-1.module+el9.4.0+20268+ab82f8a5
H CVE-2024-22025	<0:3.0.1-1.module+el9.4.0+20268+ab82f8a5
H CVE-2024-22017	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H CVE-2024-21896	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H Directory Traversal	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H CVE-2024-21890	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H CVE-2024-22019	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H Arbitrary Code Injection	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H CVE-2023-46809	<0:3.0.1-1.module+el9.4.0+19932+a5bb191c
H CVE-2023-32559	<0:3.0.1-1.module+el9.2.0+15172+b1edf08f
H CVE-2023-32006	<0:3.0.1-1.module+el9.2.0+15172+b1edf08f
H CVE-2023-32002	<0:3.0.1-1.module+el9.2.0+15172+b1edf08f
H Inefficient Regular Expression Complexity	<0:3.0.1-1.module+el9.2.0+15172+b1edf08f
H Use of Insufficiently Random Values	<0:2.0.20-2.module+el9.2.0+14843+acebbfea
H Out-of-bounds Write	<0:2.0.20-2.module+el9.2.0+14843+acebbfea
H Use of Insufficiently Random Values	<0:2.0.20-2.module+el9.2.0+14843+acebbfea
H CVE-2023-32067	<0:2.0.20-2.module+el9.2.0+14843+acebbfea
M Inefficient Regular Expression Complexity	<0:2.0.20-3.el9_2
M Arbitrary Code Injection	<0:2.0.20-3.el9_2
M Untrusted Search Path	<0:2.0.20-3.el9_2
M Incorrect Authorization	<0:2.0.20-3.el9_2
M Improper Validation of Specified Quantity in Input	<0:2.0.20-3.el9_2
M Inefficient Regular Expression Complexity	<0:2.0.20-3.el9_2
M Information Exposure	<0:2.0.19-1.el9_0
M OS Command Injection	<0:2.0.20-1.module+el9.1.0+13234+90e40c60
M Inefficient Regular Expression Complexity	<0:2.0.20-1.module+el9.1.0+13234+90e40c60
M Inefficient Regular Expression Complexity	<0:2.0.19-1.el9_0
M Inefficient Regular Expression Complexity	<0:2.0.19-1.el9_0
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:2.0.19-1.el9_0
M Resource Exhaustion	<0:2.0.19-1.el9_0
M CVE-2022-33987	<0:2.0.19-1.el9_0
M HTTP Request Smuggling	<0:2.0.19-1.el9_0
M HTTP Request Smuggling	<0:2.0.19-1.el9_0
M HTTP Request Smuggling	<0:2.0.19-1.el9_0
M HTTP Request Smuggling	<0:2.0.20-2.el9_1
M OS Command Injection	<0:2.0.19-1.el9_0
M Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<0:2.0.20-2.el9_1

Vulnerability

Vulnerable Version

CVE-2025-23083