CVE-2020-8265

MEDIUM

Description

Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.

References

https://hackerone.com/reports/988103

https://lists.fedoraproject.org/archives/list/[email protected]/message/H472D5HPXN6RRXCNFML3BK5OYC52CXF2/

https://lists.fedoraproject.org/archives/list/[email protected]/message/K4I6MZNC7C7VIDQR267OL4TVCI3ZKAC4/

https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/

https://security.gentoo.org/glsa/202101-07

https://security.netapp.com/advisory/ntap-20210212-0003/

https://www.debian.org/security/2021/dsa-4826

https://www.oracle.com/security-alerts/cpujan2021.html

Details

Source: MITRE

Published: 2021-01-06

Updated: 2021-02-19

Type: CWE-416

Risk Information

CVSS v2.0

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 8.1

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.2

Severity: HIGH

Tenable Plugins

View all (29 total)

IDNameProductFamilySeverity
148351Photon OS 4.0: Nodejs PHSA-2021-4.0-0007NessusPhotonOS Local Security Checks
medium
146539CentOS 8 : nodejs:12 (CESA-2021:0549)NessusCentOS Local Security Checks
high
146802CentOS 8 : nodejs:10 (CESA-2021:0548)NessusCentOS Local Security Checks
high
146638Oracle Linux 8 : nodejs:10 (ELSA-2021-0548)NessusOracle Linux Local Security Checks
high
146637Oracle Linux 8 : nodejs:14 (ELSA-2021-0551)NessusOracle Linux Local Security Checks
high
146636Oracle Linux 8 : nodejs:12 (ELSA-2021-0549)NessusOracle Linux Local Security Checks
high
146548CentOS 8 : nodejs:14 (CESA-2021:0551)NessusCentOS Local Security Checks
high
146547RHEL 8 : nodejs:10 (RHSA-2021:0548)NessusRed Hat Local Security Checks
high
146540RHEL 8 : nodejs:14 (RHSA-2021:0551)NessusRed Hat Local Security Checks
high
146536RHEL 8 : nodejs:12 (RHSA-2021:0549)NessusRed Hat Local Security Checks
high
145418Photon OS 2.0: Nodejs PHSA-2021-2.0-0313NessusPhotonOS Local Security Checks
medium
145413Photon OS 3.0: Nodejs PHSA-2021-3.0-0186NessusPhotonOS Local Security Checks
medium
145398openSUSE Security Update : nodejs10 (openSUSE-2021-82)NessusSuSE Local Security Checks
medium
145371openSUSE Security Update : nodejs12 (openSUSE-2021-64)NessusSuSE Local Security Checks
medium
145299openSUSE Security Update : nodejs10 (openSUSE-2021-65)NessusSuSE Local Security Checks
medium
145286openSUSE Security Update : nodejs14 (openSUSE-2021-66)NessusSuSE Local Security Checks
medium
145233Photon OS 1.0: Nodejs10 PHSA-2021-1.0-0355NessusPhotonOS Local Security Checks
medium
145150Fedora 32 : 1:nodejs (2021-d5b2c18fe6)NessusFedora Local Security Checks
medium
145024FreeBSD : Node.js -- January 2021 Security Releases (08b553ed-537a-11eb-be6e-0022489ad614)NessusFreeBSD Local Security Checks
medium
144953SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:0107-1)NessusSuSE Local Security Checks
medium
144949Node.js 10.x < 10.23.1 / 12.x < 12.20.1 / 14.x < 14.15.4 / 15.x < 15.5.1 Multiple VulnerabilitiesNessusMisc.
medium
144921SUSE SLES15 Security Update : nodejs12 (SUSE-SU-2021:0062-1)NessusSuSE Local Security Checks
medium
144917SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0068-1)NessusSuSE Local Security Checks
medium
144912SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:0082-1)NessusSuSE Local Security Checks
medium
144911SUSE SLES15 Security Update : nodejs10 (SUSE-SU-2021:0060-1)NessusSuSE Local Security Checks
medium
144910SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:0061-1)NessusSuSE Local Security Checks
medium
144864GLSA-202101-07 : NodeJS: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
144840Fedora 33 : 1:nodejs (2021-fb1a136393)NessusFedora Local Security Checks
medium
144824Debian DSA-4826-1 : nodejs - security updateNessusDebian Local Security Checks
medium