CVE-2025-23084 | Node.js on Windows Drive Name path traversal (Nessus ID 214404)

Posted by Angelo Barbosa | Jan 24, 2025 | CVE

A vulnerability classified as problematic has been found in Node.js on Windows. Affected is an unknown function of the component Drive Name Handler. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2025-23084. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-23084 | Node.js on Windows Drive Name path traversal (Nessus ID 214404)

Related Posts

CVE-2024-3378 | iboss Secure Web Gateway up to 10.1 Login Portal /login redirectUrl cross site scripting

CVE-2023-51517 | CodePeople Calculated Fields Form Plugin up to 1.2.28 on WordPress redirect

CVE-2024-0626 | WooCommerce Clover Payment Gateway Plugin up to 1.3.1 on WordPress callback_handler authorization

CVE-2023-49192 | Enhanced Text Widget Plugin up to 1.6.2 on WordPress etw_hide_admin_notification_callback authorization