The version of nodejs / nodejs18 / reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-42282 advisory.

  - The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are     improperly categorized as globally routable via isPublic. (CVE-2023-42282)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of IBM Cognos Analytics installed on the remote host is prior to 11.2.4 FP4 or 12.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the 7173592 advisory.

  - An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via     a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases     in which uploading arbitrary files is the desired behavior. Also, there are configuration options in all     versions that can change the default behavior of how files are handled. Strapi does not consider this to     be a valid vulnerability. (CVE-2022-29622)

  - Node.js IP package could allow a remote attacker to execute arbitrary code on the system, caused by a     server-side request forgery flaw in the ip.isPublic() function. By sending a specially crafted request     using a hexadecimal representation of a private IP address, an attacker could exploit this vulnerability     to execute arbitrary code on the system and obtain sensitive information. (CVE-2023-42282)   
  - Multiple vendors are vulnerable to a denial of service, caused by a flaw in handling multiplexed streams     in the HTTP/2 protocol. By sending numerous HTTP/2 requests and RST_STREAM frames over multiple streams, a     remote attacker could exploit this vulnerability to cause a denial of service due to server resource     consumption. (CVE-2023-44487)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of nodejs / nodejs18 / reaper installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-42282 advisory.

  - The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are     improperly categorized as globally routable via isPublic. (CVE-2023-42282)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6643-1 advisory.

    Emre Durmaz discovered that NPM IP package incorrectly distinguished between private and public IP     addresses. A remote attacker could possibly use this issue to perform Server-Side Request Forgery (SSRF)     attacks.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are     improperly categorized as globally routable via isPublic. (CVE-2023-42282)

Note that Nessus relies on the presence of the package as reported by the vendor.

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0613 advisory.

    Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:

    CVE-2024-27983:
    An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2     frames packets with a few HTTP/2 frames inside. It is possible to leave some data in nghttp2 memory after     reset when headers with HTTP/2 CONTINUATION frame are sent to the server and then a TCP connection is     abruptly closed by the client triggering the Http2Session destructor while header frames are still being     processed (and stored in memory) causing a race condition.

    CVE-2024-27982:
    The team has identified a critical vulnerability in the http server of the most recent version of Node,     where malformed headers can lead to HTTP request smuggling. Specifically, if a space is placed before a     content-length header, it is not interpreted correctly, enabling attackers to smuggle in a second request     within the body of the first.

    CVE-2024-22019:
    A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with     chunked encoding, leading to resource exhaustion and denial of service (DoS). The server reads an     unbounded number of bytes from a single connection, exploiting the lack of limitations on chunk extension     bytes. The issue can cause CPU and network bandwidth exhaustion, bypassing standard safeguards like     timeouts and body size limits.

    CVE-2023-46809:
    A flaw was found in Node.js. The privateDecrypt() API of the crypto library may allow a covert timing     side-channel during PKCS#1 v1.5 padding error handling. This issue revealed significant timing differences     in decryption for valid and invalid ciphertexts, which may allow a remote attacker to decrypt captured RSA     ciphertexts or forge signatures, especially in scenarios involving API endpoints processing JSON Web     Encryption messages.

    CVE-2024-22025:
    A vulnerability in Node.js has been identified, allowing for a Denial of Service (DoS) attack through     resource exhaustion when using the fetch() function to retrieve content from an untrusted URL.
    The vulnerability stems from the fact that the fetch() function in Node.js always decodes Brotli, making     it possible for an attacker to cause resource exhaustion when fetching content from an untrusted URL.
    An attacker controlling the URL passed into fetch() can exploit this vulnerability to exhaust memory,     potentially leading to process termination, depending on the system configuration.

    CVE-2023-42282:
    The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are     improperly categorized as globally routable via isPublic. A vulnerability was found in the NPM IP Package.
    This flaw allows an attacker to perform arbitrary code execution and obtain sensitive information via the     isPublic() function by inducing a Server-Side Request Forgery (SSRF) attack and obtaining access to     normally inaccessible resources.

    CVE-2023-24807:
    Undici is an HTTP/1.1 client for Node.js. Prior to version 5.19.1, the `Headers.set()` and     `Headers.append()` methods are vulnerable to Regular Expression Denial of Service (ReDoS) attacks when     untrusted values are passed into the functions. This is due to the inefficient regular expression used to     normalize the values in the `headerValueNormalize()` utility function. This vulnerability was patched in     v5.19.1. No known workarounds are available.

Tenable has extracted the preceding description block directly from the Tencent Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Published	Updated	Severity
201839	CBL Mariner 2.0 Security Update: nodejs / nodejs18 / reaper (CVE-2023-42282)	Nessus	MarinerOS Local Security Checks	7/3/2024	2/10/2025	critical
213274	IBM Cognos Analytics 11.2.x < 11.2.4 FP4 / 12.0.x < 12.0.4 Multiple Vulnerabilities (7173592)	Nessus	CGI abuses	12/20/2024	4/3/2025	critical
215925	Azure Linux 3.0 Security Update: nodejs / nodejs18 / reaper (CVE-2023-42282)	Nessus	Azure Linux Local Security Checks	2/10/2025	9/15/2025	critical
190714	Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : NPM IP vulnerability (USN-6643-1)	Nessus	Ubuntu Local Security Checks	2/19/2024	8/27/2024	critical
226273	Linux Distros Unpatched Vulnerability : CVE-2023-42282	Nessus	Misc.	3/5/2025	10/28/2025	critical
239018	TencentOS Server 4: nodejs (TSSA-2024:0613)	Nessus	Tencent Local Security Checks	6/16/2025	11/20/2025	critical

Detections

Analytics

Plugins Search

critical

critical

critical

critical

critical

critical