CVE-2025-23090 | Node.js up to 20.18.1/22.13.0/23.6.0 diagnostics_channel Utility permission

Posted by Angelo Barbosa | Jan 22, 2025 | CVE

A vulnerability, which was classified as critical, was found in Node.js up to 20.18.1/22.13.0/23.6.0. This affects an unknown part of the component diagnostics_channel Utility. The manipulation leads to permission issues.

This vulnerability is uniquely identified as CVE-2025-23090. Local access is required to approach this attack. There is no exploit available.

CVE-2025-23090 | Node.js up to 20.18.1/22.13.0/23.6.0 diagnostics_channel Utility permission

Related Posts

CVE-2024-37301 | adfinis document-merge-service up to 6.5.1 Template special elements used in a template engine (GHSA-v5gf-r78h-55q6)

CVE-2024-54330 | Hep Hep Hurra Hurrakify Plugin up to 2.4 on WordPress server-side request forgery

CVE-2024-6526 | CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03 search_title/catName/sub/name/categorie cross site scripting

CVE-2024-34437 | 10Web Form Maker Plugin up to 1.15.24 on WordPress cross site scripting