Node.js up to 12.22.1/14.17.1/16.4.0 ASCII String uv__idna_toascii out-of-bounds read - Cloud WAF

Free Trial

Node.js up to 12.22.1/14.17.1/16.4.0 ASCII String uv__idna_toascii out-of-bounds read

A vulnerability was found in Node.js up to 12.22.1/14.17.1/16.4.0 (JavaScript Library). It has been declared as problematic. Affected by this vulnerability is the function uv__idna_toascii of the component ASCII String Handler. Upgrading to version 12.22.2, 14.17.2 or 16.4.1 eliminates this vulnerability. The upgrade is hosted for download at nodejs.org.

Contact us to get started

CVE-2024-52759 : D-LINK DI-8003 16.07.26A1 IP_POSITION_ASP IP BUFFER OVERFLOW

CVE-2024-52759 : D-LINK DI-8003 16.07.26A1 IP_POSITION_ASP IP BUFFER OVERFLOW

Description D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the ip parameter in the ip_position_asp function. References

Learn more

CVE-2024-51503 : TREND MICRO DEEP SECURITY UP TO 20.0 OS COMMAND INJECTION

CVE-2024-51503 : TREND MICRO DEEP SECURITY UP TO 20.0 OS COMMAND INJECTION

Description A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20 Agent could allow an

Learn more

CVE-2024-52360 : IBM CONCERT SOFTWARE 1.0.0/1.0.1/1.0.2/1.0.2.1 SQL INJECTION

CVE-2024-52360 : IBM CONCERT SOFTWARE 1.0.0/1.0.1/1.0.2/1.0.2.1 SQL INJECTION

Description IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote attacker could send specially

Learn more