CVE-2020-8265MEDIUM
Description
Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.
References
https://hackerone.com/reports/988103
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
https://security.gentoo.org/glsa/202101-07
https://security.netapp.com/advisory/ntap-20210212-0003/
Details
Source: MITRE
Published: 2021-01-06
Updated: 2021-02-19
Type: CWE-416
Risk Information
CVSS v2.0
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3.0
Base Score: 8.1
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.2
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
Configuration 2
OR
Configuration 3
OR
Configuration 4
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 148351 | Photon OS 4.0: Nodejs PHSA-2021-4.0-0007 | Nessus | PhotonOS Local Security Checks | medium |
| 146539 | CentOS 8 : nodejs:12 (CESA-2021:0549) | Nessus | CentOS Local Security Checks | high |
| 146802 | CentOS 8 : nodejs:10 (CESA-2021:0548) | Nessus | CentOS Local Security Checks | high |
| 146638 | Oracle Linux 8 : nodejs:10 (ELSA-2021-0548) | Nessus | Oracle Linux Local Security Checks | high |
| 146637 | Oracle Linux 8 : nodejs:14 (ELSA-2021-0551) | Nessus | Oracle Linux Local Security Checks | high |
| 146636 | Oracle Linux 8 : nodejs:12 (ELSA-2021-0549) | Nessus | Oracle Linux Local Security Checks | high |
| 146548 | CentOS 8 : nodejs:14 (CESA-2021:0551) | Nessus | CentOS Local Security Checks | high |
| 146547 | RHEL 8 : nodejs:10 (RHSA-2021:0548) | Nessus | Red Hat Local Security Checks | high |
| 146540 | RHEL 8 : nodejs:14 (RHSA-2021:0551) | Nessus | Red Hat Local Security Checks | high |
| 146536 | RHEL 8 : nodejs:12 (RHSA-2021:0549) | Nessus | Red Hat Local Security Checks | high |
| 145418 | Photon OS 2.0: Nodejs PHSA-2021-2.0-0313 | Nessus | PhotonOS Local Security Checks | medium |
| 145413 | Photon OS 3.0: Nodejs PHSA-2021-3.0-0186 | Nessus | PhotonOS Local Security Checks | medium |
| 145398 | openSUSE Security Update : nodejs10 (openSUSE-2021-82) | Nessus | SuSE Local Security Checks | medium |
| 145371 | openSUSE Security Update : nodejs12 (openSUSE-2021-64) | Nessus | SuSE Local Security Checks | medium |
| 145299 | openSUSE Security Update : nodejs10 (openSUSE-2021-65) | Nessus | SuSE Local Security Checks | medium |
| 145286 | openSUSE Security Update : nodejs14 (openSUSE-2021-66) | Nessus | SuSE Local Security Checks | medium |
| 145233 | Photon OS 1.0: Nodejs10 PHSA-2021-1.0-0355 | Nessus | PhotonOS Local Security Checks | medium |
| 145150 | Fedora 32 : 1:nodejs (2021-d5b2c18fe6) | Nessus | Fedora Local Security Checks | medium |
| 145024 | FreeBSD : Node.js -- January 2021 Security Releases (08b553ed-537a-11eb-be6e-0022489ad614) | Nessus | FreeBSD Local Security Checks | medium |
| 144953 | SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:0107-1) | Nessus | SuSE Local Security Checks | medium |
| 144949 | Node.js 10.x < 10.23.1 / 12.x < 12.20.1 / 14.x < 14.15.4 / 15.x < 15.5.1 Multiple Vulnerabilities | Nessus | Misc. | medium |
| 144921 | SUSE SLES15 Security Update : nodejs12 (SUSE-SU-2021:0062-1) | Nessus | SuSE Local Security Checks | medium |
| 144917 | SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0068-1) | Nessus | SuSE Local Security Checks | medium |
| 144912 | SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:0082-1) | Nessus | SuSE Local Security Checks | medium |
| 144911 | SUSE SLES15 Security Update : nodejs10 (SUSE-SU-2021:0060-1) | Nessus | SuSE Local Security Checks | medium |
| 144910 | SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:0061-1) | Nessus | SuSE Local Security Checks | medium |
| 144864 | GLSA-202101-07 : NodeJS: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 144840 | Fedora 33 : 1:nodejs (2021-fb1a136393) | Nessus | Fedora Local Security Checks | medium |
| 144824 | Debian DSA-4826-1 : nodejs - security update | Nessus | Debian Local Security Checks | medium |