Vulnerability-Lookup

	Vendor	Product	Version
	vercel	next.js	Affected: >= 11.1.0, < 11.1.3 Affected: >= 12.0.0, < 12.0.5

cleanstart-2026-jy06700

Vulnerability from cleanstart

Published

2026-02-27 01:09

Modified

2026-02-26 12:09

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-JY06700",
  "modified": "2026-02-26T12:09:56Z",
  "published": "2026-02-27T01:09:46.914639Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-JY06700"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-kn34553

Vulnerability from cleanstart

Published

2026-02-19 00:58

Modified

2026-02-18 09:40

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-KN34553",
  "modified": "2026-02-18T09:40:19Z",
  "published": "2026-02-19T00:58:48.926519Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-KN34553"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-jr35772

Vulnerability from cleanstart

Published

2026-04-01 09:17

Modified

2026-03-26 15:01

Summary

Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-JR35772",
  "modified": "2026-03-26T15:01:29Z",
  "published": "2026-04-01T09:17:37.864227Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-JR35772.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-ln12820

Vulnerability from cleanstart

Published

2026-02-19 00:58

Modified

2026-02-18 09:40

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-LN12820",
  "modified": "2026-02-18T09:40:19Z",
  "published": "2026-02-19T00:58:49.154512Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-LN12820"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-kz45320

Vulnerability from cleanstart

Published

2026-04-01 09:16

Modified

2026-03-26 18:22

Summary

Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-KZ45320",
  "modified": "2026-03-26T18:22:34Z",
  "published": "2026-04-01T09:16:45.727713Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-KZ45320.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-bd71263

Vulnerability from cleanstart

Published

2026-04-01 09:17

Modified

2026-03-26 17:04

Summary

Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-BD71263",
  "modified": "2026-03-26T17:04:08Z",
  "published": "2026-04-01T09:17:26.065920Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-BD71263.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-is74202

Vulnerability from cleanstart

Published

2026-04-01 09:09

Modified

2026-03-31 04:38

Summary

Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0

Details

Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. These issues are resolved in later releases. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-IS74202",
  "modified": "2026-03-31T04:38:08Z",
  "published": "2026-04-01T09:09:55.185988Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-IS74202.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "summary": "Security fixes for CVE-2017-14919, CVE-2017-15896, CVE-2018-0734, CVE-2018-0735, CVE-2018-1000168, CVE-2018-12121, CVE-2018-12122, CVE-2018-7160, CVE-2018-7161, CVE-2019-15604, CVE-2019-15605, CVE-2019-15606, CVE-2019-5737, CVE-2019-9511, CVE-2019-9512, CVE-2019-9513, CVE-2019-9514, CVE-2019-9515, CVE-2019-9516, CVE-2019-9517, CVE-2019-9518, CVE-2020-11080, CVE-2020-7774, CVE-2020-8172, CVE-2020-8174, CVE-2020-8201, CVE-2020-8252, CVE-2020-8265, CVE-2020-8277, CVE-2020-8287, CVE-2021-21148, CVE-2021-22930, CVE-2021-22931, CVE-2021-22959, CVE-2021-22960, CVE-2021-3672, CVE-2021-43803, CVE-2021-44531, CVE-2021-44532, CVE-2022-32212, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2022-35255, CVE-2022-35256, CVE-2022-3602, CVE-2022-43548, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807, CVE-2023-39333, CVE-2023-44487, CVE-2024-22018, CVE-2024-22020, CVE-2024-27982, CVE-2024-27983, CVE-2024-36138, CVE-2024-37372 applied in versions: 10.14.0-r0, 10.15.3-r0, 10.16.3-r0, 12.15.0-r0, 12.18.0-r0, 12.18.4-r0, 14.15.1-r0, 14.15.4-r0, 14.15.5-r0, 14.16.0-r0, 14.16.1-r0, 14.17.4-r0, 14.17.5-r0, 14.17.6-r0, 14.18.1-r0, 16.13.2-r0, 16.17.1-r0, 18.12.1-r0, 18.14.1-r0, 18.17.1-r0, 18.18.2-r0, 20.12.1-r0, 20.15.1-r0, 6.11.1-r0, 6.11.5-r0, 8.11.0-r0, 8.11.3-r0, 8.11.4-r0, 8.9.3-r0",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

cleanstart-2026-wi75198

Vulnerability from cleanstart

Published

2026-01-30 17:34

Modified

2026-01-29 18:58

Summary

vulnerability has been identified in Node

Details

Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.

Severity

9.8 (Critical)


                    
                      CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

URL

Type

	https://github.com/cleanstart-dev/cleanstart-secu…	ADVISORY
	https://osv.dev/vulnerability/CVE-2017-14919	WEB
	https://osv.dev/vulnerability/CVE-2017-15896	WEB
	https://osv.dev/vulnerability/CVE-2018-0734	WEB
	https://osv.dev/vulnerability/CVE-2018-0735	WEB
	https://osv.dev/vulnerability/CVE-2018-1000168	WEB
	https://osv.dev/vulnerability/CVE-2018-12121	WEB
	https://osv.dev/vulnerability/CVE-2018-12122	WEB
	https://osv.dev/vulnerability/CVE-2018-7160	WEB
	https://osv.dev/vulnerability/CVE-2018-7161	WEB
	https://osv.dev/vulnerability/CVE-2019-15604	WEB
	https://osv.dev/vulnerability/CVE-2019-15605	WEB
	https://osv.dev/vulnerability/CVE-2019-15606	WEB
	https://osv.dev/vulnerability/CVE-2019-5737	WEB
	https://osv.dev/vulnerability/CVE-2019-9511	WEB
	https://osv.dev/vulnerability/CVE-2019-9512	WEB
	https://osv.dev/vulnerability/CVE-2019-9513	WEB
	https://osv.dev/vulnerability/CVE-2019-9514	WEB
	https://osv.dev/vulnerability/CVE-2019-9515	WEB
	https://osv.dev/vulnerability/CVE-2019-9516	WEB
	https://osv.dev/vulnerability/CVE-2019-9517	WEB
	https://osv.dev/vulnerability/CVE-2019-9518	WEB
	https://osv.dev/vulnerability/CVE-2020-11080	WEB
	https://osv.dev/vulnerability/CVE-2020-7774	WEB
	https://osv.dev/vulnerability/CVE-2020-8172	WEB
	https://osv.dev/vulnerability/CVE-2020-8174	WEB
	https://osv.dev/vulnerability/CVE-2020-8201	WEB
	https://osv.dev/vulnerability/CVE-2020-8252	WEB
	https://osv.dev/vulnerability/CVE-2020-8265	WEB
	https://osv.dev/vulnerability/CVE-2020-8277	WEB
	https://osv.dev/vulnerability/CVE-2020-8287	WEB
	https://osv.dev/vulnerability/CVE-2021-21148	WEB
	https://osv.dev/vulnerability/CVE-2021-22930	WEB
	https://osv.dev/vulnerability/CVE-2021-22931	WEB
	https://osv.dev/vulnerability/CVE-2021-22959	WEB
	https://osv.dev/vulnerability/CVE-2021-22960	WEB
	https://osv.dev/vulnerability/CVE-2021-3672	WEB
	https://osv.dev/vulnerability/CVE-2021-43803	WEB
	https://osv.dev/vulnerability/CVE-2021-44531	WEB
	https://osv.dev/vulnerability/CVE-2021-44532	WEB
	https://osv.dev/vulnerability/CVE-2022-32212	WEB
	https://osv.dev/vulnerability/CVE-2022-32213	WEB
	https://osv.dev/vulnerability/CVE-2022-32214	WEB
	https://osv.dev/vulnerability/CVE-2022-32215	WEB
	https://osv.dev/vulnerability/CVE-2022-35255	WEB
	https://osv.dev/vulnerability/CVE-2022-35256	WEB
	https://osv.dev/vulnerability/CVE-2022-3602	WEB
	https://osv.dev/vulnerability/CVE-2022-43548	WEB
	https://osv.dev/vulnerability/CVE-2023-23918	WEB
	https://osv.dev/vulnerability/CVE-2023-23919	WEB
	https://osv.dev/vulnerability/CVE-2023-23920	WEB
	https://osv.dev/vulnerability/CVE-2023-23936	WEB
	https://osv.dev/vulnerability/CVE-2023-24807	WEB
	https://osv.dev/vulnerability/CVE-2023-39333	WEB
	https://osv.dev/vulnerability/CVE-2023-44487	WEB
	https://osv.dev/vulnerability/CVE-2024-22018	WEB
	https://osv.dev/vulnerability/CVE-2024-22020	WEB
	https://osv.dev/vulnerability/CVE-2024-27982	WEB
	https://osv.dev/vulnerability/CVE-2024-27983	WEB
	https://osv.dev/vulnerability/CVE-2024-36138	WEB
	https://osv.dev/vulnerability/CVE-2024-37372	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-14919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2017-15896	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0734	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-0735	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-1000168	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12121	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-12122	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7160	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2018-7161	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15604	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15605	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-15606	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-5737	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9511	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9512	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9513	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9514	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9515	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9516	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9517	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2019-9518	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-11080	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-7774	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8172	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8174	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8201	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8252	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8265	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8277	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2020-8287	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-21148	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22930	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22931	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22959	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-22960	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-3672	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-43803	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44531	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2021-44532	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32212	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32213	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32214	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-32215	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35255	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-35256	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-3602	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2022-43548	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23918	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23919	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23920	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-23936	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-24807	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-39333	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2023-44487	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22018	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-22020	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27982	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-27983	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-36138	WEB
	https://nvd.nist.gov/vuln/detail/CVE-2024-37372	WEB

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "CleanStart",
        "name": "nodejs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.9.3-r0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "credits": [],
  "database_specific": {},
  "details": "Multiple security vulnerabilities affect the nodejs package. A vulnerability has been identified in Node. See references for individual vulnerability details.",
  "id": "CLEANSTART-2026-WI75198",
  "modified": "2026-01-29T18:58:54Z",
  "published": "2026-01-30T17:34:27.754206Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-WI75198.json"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://osv.dev/vulnerability/CVE-2024-37372"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15896"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0734"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-0735"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1000168"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12121"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12122"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7160"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7161"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15604"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15605"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15606"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5737"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9511"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9513"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9515"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9516"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9517"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9518"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11080"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7774"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8172"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8174"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8201"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8252"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8265"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8277"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8287"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21148"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22930"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22931"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22959"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22960"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3672"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44531"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44532"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32212"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32213"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32214"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32215"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35255"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35256"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3602"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43548"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23918"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23919"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23920"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23936"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24807"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39333"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22018"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27982"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27983"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36138"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37372"
    }
  ],
  "related": [],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "vulnerability has been identified in Node",
  "upstream": [
    "CVE-2017-14919",
    "CVE-2017-15896",
    "CVE-2018-0734",
    "CVE-2018-0735",
    "CVE-2018-1000168",
    "CVE-2018-12121",
    "CVE-2018-12122",
    "CVE-2018-7160",
    "CVE-2018-7161",
    "CVE-2019-15604",
    "CVE-2019-15605",
    "CVE-2019-15606",
    "CVE-2019-5737",
    "CVE-2019-9511",
    "CVE-2019-9512",
    "CVE-2019-9513",
    "CVE-2019-9514",
    "CVE-2019-9515",
    "CVE-2019-9516",
    "CVE-2019-9517",
    "CVE-2019-9518",
    "CVE-2020-11080",
    "CVE-2020-7774",
    "CVE-2020-8172",
    "CVE-2020-8174",
    "CVE-2020-8201",
    "CVE-2020-8252",
    "CVE-2020-8265",
    "CVE-2020-8277",
    "CVE-2020-8287",
    "CVE-2021-21148",
    "CVE-2021-22930",
    "CVE-2021-22931",
    "CVE-2021-22959",
    "CVE-2021-22960",
    "CVE-2021-3672",
    "CVE-2021-43803",
    "CVE-2021-44531",
    "CVE-2021-44532",
    "CVE-2022-32212",
    "CVE-2022-32213",
    "CVE-2022-32214",
    "CVE-2022-32215",
    "CVE-2022-35255",
    "CVE-2022-35256",
    "CVE-2022-3602",
    "CVE-2022-43548",
    "CVE-2023-23918",
    "CVE-2023-23919",
    "CVE-2023-23920",
    "CVE-2023-23936",
    "CVE-2023-24807",
    "CVE-2023-39333",
    "CVE-2023-44487",
    "CVE-2024-22018",
    "CVE-2024-22020",
    "CVE-2024-27982",
    "CVE-2024-27983",
    "CVE-2024-36138",
    "CVE-2024-37372"
  ]
}

GHSA-25MP-G6FV-MQXX

Vulnerability from github – Published: 2021-12-07 21:12 – Updated: 2024-03-13 22:14

Summary

Unexpected server crash in Next.js.

Details

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue. Note that prior version 0.9.9 package next hosted a different utility (0.4.1 being the latest version of that codebase), and this advisory does not apply to those versions.

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "npm",
        "name": "next"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "12.0.0"
            },
            {
              "fixed": "12.0.5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "npm",
        "name": "next"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0.9.9"
            },
            {
              "fixed": "11.1.3"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2021-43803"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2021-12-06T19:17:55Z",
    "nvd_published_at": "2021-12-10T00:15:00Z",
    "severity": "HIGH"
  },
  "details": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue. Note that prior version 0.9.9 package `next` hosted a different utility (0.4.1 being the latest version of that codebase), and this advisory does not apply to those versions. ",
  "id": "GHSA-25mp-g6fv-mqxx",
  "modified": "2024-03-13T22:14:17Z",
  "published": "2021-12-07T21:12:09Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43803"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/vercel/next.js"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "type": "WEB",
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Unexpected server crash in Next.js."
}

FKIE_CVE-2021-43803

Vulnerability from fkie_nvd - Published: 2021-12-10 00:15 - Updated: 2024-11-21 06:29

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.

References

URL	Tags
security-advisories@github.com	https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/pull/32080	Patch, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/releases/tag/v11.1.3	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/releases/v12.0.5	Release Notes, Third Party Advisory
security-advisories@github.com	https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/pull/32080	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/releases/tag/v11.1.3	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/releases/v12.0.5	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx	Patch, Third Party Advisory

Impacted products

Vendor	Product	Version
vercel	next.js	*
vercel	next.js	*
nodejs	node.js	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "D413EFEB-941C-4FDD-BA04-32B7902BCFE7",
              "versionEndExcluding": "11.1.3",
              "versionStartIncluding": "11.1.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
              "matchCriteriaId": "C1457A80-9287-4C15-9AF3-8CE57500C4AA",
              "versionEndExcluding": "12.0.5",
              "versionStartIncluding": "12.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B44D2C4-15DF-4918-B374-3C780CC43ACC",
              "versionStartExcluding": "15.0.0",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
    },
    {
      "lang": "es",
      "value": "Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\u00e1lidas o malformadas podr\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\u00e1n afectados, junto con entornos similares en los que las peticiones no v\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema"
    }
  ],
  "id": "CVE-2021-43803",
  "lastModified": "2024-11-21T06:29:49.447",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2021-12-10T00:15:11.827",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/pull/32080"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/releases/v12.0.5"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2023-AVI-0705

Vulnerability from certfr_avis - Published: 2023-09-01 - Updated: 2023-09-01

De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.0.3 sans le correctif de sécurité iFix08
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.0.3 sans le correctif de sécurité iFix 08
IBM	Sterling	IBM Sterling Secure Proxy versions versions antérieures à 6.1.0 sans le correctif de sécurité GA
IBM	QRadar User Behavior Analytics	IBM QRadar User Behavior Analytics versions antérieures à 4.1.13
IBM	Tivoli Monitoring	IBM Tivoli Monitoring versions 6.x.x antérieures à 6.3.0.7 Plus Service Pack 5
IBM	Cloud Pak	IBM Cognos Dashboards on Cloud Pak for Data versions 4.7.x antérieures à 4.7.2
IBM	Sterling	IBM Sterling External Authentication Server versions antérieures à 6.1.0 sans le correctif de sécurité iFix 04

References

Title

Publication Time

GSD-2021-43803

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.

Aliases

CVE-2021-43803

Aliases

CVE-2021-43803

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-43803",
    "description": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.",
    "id": "GSD-2021-43803"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-43803"
      ],
      "details": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue.",
      "id": "GSD-2021-43803",
      "modified": "2023-12-13T01:23:26.420010Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-advisories@github.com",
        "ID": "CVE-2021-43803",
        "STATE": "PUBLIC",
        "TITLE": "Unexpected server crash in Next.js"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "next.js",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "\u003e= 11.1.0, \u003c 11.1.3"
                        },
                        {
                          "version_value": "\u003e= 12.0.0, \u003c 12.0.5"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "vercel"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-20: Improper Input Validation"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx",
            "refsource": "CONFIRM",
            "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          },
          {
            "name": "https://github.com/vercel/next.js/pull/32080",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/pull/32080"
          },
          {
            "name": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
          },
          {
            "name": "https://github.com/vercel/next.js/releases/tag/v11.1.3",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
          },
          {
            "name": "https://github.com/vercel/next.js/releases/v12.0.5",
            "refsource": "MISC",
            "url": "https://github.com/vercel/next.js/releases/v12.0.5"
          }
        ]
      },
      "source": {
        "advisory": "GHSA-25mp-g6fv-mqxx",
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003e=11.1.0 \u003c11.1.3||\u003e=12.0.0 \u003c12.0.5",
          "affected_versions": "All versions starting from 11.1.0 before 11.1.3, all versions starting from 12.0.0 before 12.0.5",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-937"
          ],
          "date": "2022-02-17",
          "description": "Next handling invalid or malformed URLs could lead to a server crash. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js.",
          "fixed_versions": [
            "11.1.3",
            "12.0.5"
          ],
          "identifier": "CVE-2021-43803",
          "identifiers": [
            "CVE-2021-43803",
            "GHSA-25mp-g6fv-mqxx"
          ],
          "not_impacted": "All versions before 11.1.0, all versions starting from 11.1.3 before 12.0.0, all versions starting from 12.0.5",
          "package_slug": "npm/next",
          "pubdate": "2021-12-10",
          "solution": "Upgrade to versions 11.1.3, 12.0.5 or above.",
          "title": "Improper Input Validation",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2021-43803",
            "https://github.com/vercel/next.js/releases/v12.0.5",
            "https://github.com/vercel/next.js/pull/32080",
            "https://github.com/vercel/next.js/releases/tag/v11.1.3",
            "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264",
            "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          ],
          "uuid": "f0815d0b-7f16-479f-8cfe-a091a85302da"
        }
      ]
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
                    "matchCriteriaId": "D413EFEB-941C-4FDD-BA04-32B7902BCFE7",
                    "versionEndExcluding": "11.1.3",
                    "versionStartIncluding": "11.1.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:vercel:next.js:*:*:*:*:*:node.js:*:*",
                    "matchCriteriaId": "C1457A80-9287-4C15-9AF3-8CE57500C4AA",
                    "versionEndExcluding": "12.0.5",
                    "versionStartIncluding": "12.0.0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              },
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "2B44D2C4-15DF-4918-B374-3C780CC43ACC",
                    "versionStartExcluding": "15.0.0",
                    "vulnerable": false
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ],
            "operator": "AND"
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Next.js is a React framework. In versions of Next.js prior to 12.0.5 or 11.1.3, invalid or malformed URLs could lead to a server crash. In order to be affected by this issue, the deployment must use Next.js versions above 11.1.0 and below 12.0.5, Node.js above 15.0.0, and next start or a custom server. Deployments on Vercel are not affected, along with similar environments where invalid requests are filtered before reaching Next.js. Versions 12.0.5 and 11.1.3 contain patches for this issue."
          },
          {
            "lang": "es",
            "value": "Next.js es un framework de React. En las versiones de Next.js anteriores a 12.0.5 o 11.1.3, las direcciones URL no v\u00e1lidas o malformadas podr\u00edan conllevar a un bloqueo del servidor. Para verse afectado por este problema, el despliegue debe usar versiones de Next.js superiores a 11.1.0 y anteriores a 12.0.5, Node.js versiones posteriores a 15.0.0, y el siguiente inicio o un servidor personalizado. Los despliegues en Vercel no est\u00e1n afectados, junto con entornos similares en los que las peticiones no v\u00e1lidas son filtradas antes de llegar a Next.js. Las versiones 12.0.5 y 11.1.3 contienen parches para este problema"
          }
        ],
        "id": "CVE-2021-43803",
        "lastModified": "2024-03-12T16:03:46.020",
        "metrics": {
          "cvssMetricV2": [
            {
              "acInsufInfo": false,
              "baseSeverity": "MEDIUM",
              "cvssData": {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              "exploitabilityScore": 8.6,
              "impactScore": 2.9,
              "obtainAllPrivilege": false,
              "obtainOtherPrivilege": false,
              "obtainUserPrivilege": false,
              "source": "nvd@nist.gov",
              "type": "Primary",
              "userInteractionRequired": false
            }
          ],
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 3.6,
              "source": "security-advisories@github.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2021-12-10T00:15:11.827",
        "references": [
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/commit/6d98b4fb4315dec1badecf0e9bdc212a4272b264"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/pull/32080"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Release Notes",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/releases/tag/v11.1.3"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Release Notes",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/releases/v12.0.5"
          },
          {
            "source": "security-advisories@github.com",
            "tags": [
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://github.com/vercel/next.js/security/advisories/GHSA-25mp-g6fv-mqxx"
          }
        ],
        "sourceIdentifier": "security-advisories@github.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-20"
              }
            ],
            "source": "security-advisories@github.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

CVE-2021-43803 (GCVE-0-2021-43803)

Tags

Sightings

Nomenclature

Action not permitted

CVE-2021-43803 (GCVE-0-2021-43803)

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Vulnerability from cleanstart

Solution

Tags

Sightings

Nomenclature