CVE-2024-21892 | Node.js up to 18.19.0/20.11.0/21.6.1 code injection

Inserito da Angelo Barbosa | Feb 19, 2024 | CVE

A vulnerability classified as critical was found in Node.js up to 18.19.0/20.11.0/21.6.1. This vulnerability affects unknown code. The manipulation leads to code injection.

This vulnerability was named CVE-2024-21892. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21892 | Node.js up to 18.19.0/20.11.0/21.6.1 code injection

Post correlati

CVE-2024-30946 | DedeCMS 5.7 /src/dede/co_do.php cross-site request forgery

CVE-2024-39302 | BigBlueButton up to 2.6.17/2.7.7/3.0.0-alpha6 resque-2.6.0 privileges management (GHSA-5966-9hw8-q96q)

CVE-2024-21473 | Qualcomm Snapdragon File Name memory corruption

CVE-2023-49606 | Tinyproxy 1.10.0/1.11.1 HTTP Connection Header use after free (TALOS-2023-1889)