CVE-2020-8265

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.

References

https://hackerone.com/reports/988103

https://lists.fedoraproject.org/archives/list/[email protected]/message/H472D5HPXN6RRXCNFML3BK5OYC52CXF2/

https://lists.fedoraproject.org/archives/list/[email protected]/message/K4I6MZNC7C7VIDQR267OL4TVCI3ZKAC4/

https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/

https://security.gentoo.org/glsa/202101-07

https://security.netapp.com/advisory/ntap-20210212-0003/

https://www.debian.org/security/2021/dsa-4826

https://www.oracle.com/security-alerts/cpujan2021.html

Details

Source: MITRE

Published: 2021-01-06

Updated: 2021-02-19

Type: CWE-416

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 8.1

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.2

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*

cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*

cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*

cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*

Configuration 2

OR

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:oracle:graalvm:19.3.4:*:*:*:enterprise:*:*:*

cpe:2.3:a:oracle:graalvm:20.3.0:*:*:*:enterprise:*:*:*

Tenable Plugins

View all (29 total)

IDNameProductFamilySeverity
148351Photon OS 4.0: Nodejs PHSA-2021-4.0-0007NessusPhotonOS Local Security Checks
high
146539CentOS 8 : nodejs:12 (CESA-2021:0549)NessusCentOS Local Security Checks
high
146802CentOS 8 : nodejs:10 (CESA-2021:0548)NessusCentOS Local Security Checks
high
146638Oracle Linux 8 : nodejs:10 (ELSA-2021-0548)NessusOracle Linux Local Security Checks
high
146637Oracle Linux 8 : nodejs:14 (ELSA-2021-0551)NessusOracle Linux Local Security Checks
high
146636Oracle Linux 8 : nodejs:12 (ELSA-2021-0549)NessusOracle Linux Local Security Checks
high
146548CentOS 8 : nodejs:14 (CESA-2021:0551)NessusCentOS Local Security Checks
high
146547RHEL 8 : nodejs:10 (RHSA-2021:0548)NessusRed Hat Local Security Checks
high
146540RHEL 8 : nodejs:14 (RHSA-2021:0551)NessusRed Hat Local Security Checks
high
146536RHEL 8 : nodejs:12 (RHSA-2021:0549)NessusRed Hat Local Security Checks
high
145418Photon OS 2.0: Nodejs PHSA-2021-2.0-0313NessusPhotonOS Local Security Checks
high
145413Photon OS 3.0: Nodejs PHSA-2021-3.0-0186NessusPhotonOS Local Security Checks
high
145398openSUSE Security Update : nodejs10 (openSUSE-2021-82)NessusSuSE Local Security Checks
high
145371openSUSE Security Update : nodejs12 (openSUSE-2021-64)NessusSuSE Local Security Checks
high
145299openSUSE Security Update : nodejs10 (openSUSE-2021-65)NessusSuSE Local Security Checks
high
145286openSUSE Security Update : nodejs14 (openSUSE-2021-66)NessusSuSE Local Security Checks
high
145233Photon OS 1.0: Nodejs10 PHSA-2021-1.0-0355NessusPhotonOS Local Security Checks
high
145150Fedora 32 : 1:nodejs (2021-d5b2c18fe6)NessusFedora Local Security Checks
high
145024FreeBSD : Node.js -- January 2021 Security Releases (08b553ed-537a-11eb-be6e-0022489ad614)NessusFreeBSD Local Security Checks
high
144953SUSE SLES12 Security Update : nodejs14 (SUSE-SU-2021:0107-1)NessusSuSE Local Security Checks
high
144949Node.js 10.x < 10.23.1 / 12.x < 12.20.1 / 14.x < 14.15.4 / 15.x < 15.5.1 Multiple VulnerabilitiesNessusMisc.
high
144921SUSE SLES15 Security Update : nodejs12 (SUSE-SU-2021:0062-1)NessusSuSE Local Security Checks
high
144917SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0068-1)NessusSuSE Local Security Checks
high
144912SUSE SLES12 Security Update : nodejs10 (SUSE-SU-2021:0082-1)NessusSuSE Local Security Checks
high
144911SUSE SLES15 Security Update : nodejs10 (SUSE-SU-2021:0060-1)NessusSuSE Local Security Checks
high
144910SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:0061-1)NessusSuSE Local Security Checks
high
144864GLSA-202101-07 : NodeJS: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
144840Fedora 33 : 1:nodejs (2021-fb1a136393)NessusFedora Local Security Checks
high
144824Debian DSA-4826-1 : nodejs - security updateNessusDebian Local Security Checks
high