Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.
https://hackerone.com/reports/988103
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
https://security.gentoo.org/glsa/202101-07
https://security.netapp.com/advisory/ntap-20210212-0003/
Source: MITRE
Published: 2021-01-06
Updated: 2021-02-19
Type: CWE-416
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
Base Score: 8.1
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.2
Severity: HIGH
OR
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*
OR
OR
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
148351 | Photon OS 4.0: Nodejs PHSA-2021-4.0-0007 | Nessus | PhotonOS Local Security Checks | medium |
146539 | CentOS 8 : nodejs:12 (CESA-2021:0549) | Nessus | CentOS Local Security Checks | high |
146802 | CentOS 8 : nodejs:10 (CESA-2021:0548) | Nessus | CentOS Local Security Checks | high |
146638 | Oracle Linux 8 : nodejs:10 (ELSA-2021-0548) | Nessus | Oracle Linux Local Security Checks | high |
146637 | Oracle Linux 8 : nodejs:14 (ELSA-2021-0551) | Nessus | Oracle Linux Local Security Checks | high |
146636 | Oracle Linux 8 : nodejs:12 (ELSA-2021-0549) | Nessus | Oracle Linux Local Security Checks | high |
146548 | CentOS 8 : nodejs:14 (CESA-2021:0551) | Nessus | CentOS Local Security Checks | high |
146547 | RHEL 8 : nodejs:10 (RHSA-2021:0548) | Nessus | Red Hat Local Security Checks | high |
146540 | RHEL 8 : nodejs:14 (RHSA-2021:0551) | Nessus | Red Hat Local Security Checks | high |
146536 | RHEL 8 : nodejs:12 (RHSA-2021:0549) | Nessus | Red Hat Local Security Checks | high |
145418 | Photon OS 2.0: Nodejs PHSA-2021-2.0-0313 | Nessus | PhotonOS Local Security Checks | medium |
145413 | Photon OS 3.0: Nodejs PHSA-2021-3.0-0186 | Nessus | PhotonOS Local Security Checks | medium |
145398 | openSUSE Security Update : nodejs10 (openSUSE-2021-82) | Nessus | SuSE Local Security Checks | medium |
145371 | openSUSE Security Update : nodejs12 (openSUSE-2021-64) | Nessus | SuSE Local Security Checks | medium |
145299 | openSUSE Security Update : nodejs10 (openSUSE-2021-65) | Nessus | SuSE Local Security Checks | medium |
145286 | openSUSE Security Update : nodejs14 (openSUSE-2021-66) | Nessus | SuSE Local Security Checks | medium |
145233 | Photon OS 1.0: Nodejs10 PHSA-2021-1.0-0355 | Nessus | PhotonOS Local Security Checks | medium |
145150 | Fedora 32 : 1:nodejs (2021-d5b2c18fe6) | Nessus | Fedora Local Security Checks | medium |
145024 | FreeBSD : Node.js -- January 2021 Security Releases (08b553ed-537a-11eb-be6e-0022489ad614) | Nessus | FreeBSD Local Security Checks | medium |
144953 | SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:0107-1) | Nessus | SuSE Local Security Checks | medium |
144949 | Node.js 10.x < 10.23.1 / 12.x < 12.20.1 / 14.x < 14.15.4 / 15.x < 15.5.1 Multiple Vulnerabilities | Nessus | Misc. | medium |
144921 | SUSE SLES15 Security Update : nodejs12 (SUSE-SU-2021:0062-1) | Nessus | SuSE Local Security Checks | medium |
144917 | SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0068-1) | Nessus | SuSE Local Security Checks | medium |
144912 | SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:0082-1) | Nessus | SuSE Local Security Checks | medium |
144911 | SUSE SLES15 Security Update : nodejs10 (SUSE-SU-2021:0060-1) | Nessus | SuSE Local Security Checks | medium |
144910 | SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:0061-1) | Nessus | SuSE Local Security Checks | medium |
144864 | GLSA-202101-07 : NodeJS: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
144840 | Fedora 33 : 1:nodejs (2021-fb1a136393) | Nessus | Fedora Local Security Checks | medium |
144824 | Debian DSA-4826-1 : nodejs - security update | Nessus | Debian Local Security Checks | medium |