A vulnerability was found in Node.js up to 12.22.6/14.18.0/16.11.0 (JavaScript Library) and classified as critical. Affected by this issue is an unknown code block of the component llhttp. Upgrading to version 12.22.7, 14.18.1 or 16.11.1 eliminates this vulnerability. The upgrade is hosted for download at nodejs.org.
Node.js up to 12.22.6/14.18.0/16.11.0 llhttp request smuggling
- Virtual Patching
- October 14, 2021
- 12:04 pm
CVE-2023-5288 : SICK SIM1012 Access Control
Description A remote unauthorized attacker may connect to the SIM1012, interact with the device and change configuration settings. The adversary
CVE-2023-44466 : Linux Kernel up to 6.4.4 Ceph File System net/ceph/messenger_v2.c Buffer Overflow
Description An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error, leading
CVE-2023-20252 : CISCO CATALYST SD-WAN MANAGER SAML API IMPROPER AUTHENTICATION
Description A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an