CVE-2022-36127

high

Description

A vulnerability in Apache SkyWalking NodeJS Agent prior to 0.5.1. The vulnerability will cause NodeJS services that has this agent installed to be unavailable if the OAP is unhealthy and NodeJS agent can't establish the connection.

References

https://lists.apache.org/thread/x238wo4r5goy39dxdjcmlofp6gcdnqr3

http://www.openwall.com/lists/oss-security/2022/07/18/1

Details

Source: Mitre, NVD

Published: 2022-07-18

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H