A vulnerability has been found in youngerheart nodeserver and classified as critical. Affected by this vulnerability is an unknown functionality of the file nodeserver.js. The manipulation leads to path traversal. The identifier of the patch is c4c0f0138ab5afbac58e03915d446680421bde28. It is recommended to apply a patch to fix this issue. The identifier VDB-218461 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/youngerheart/nodeserver/commit/c4c0f0138ab5afbac58e03915d446680421bde28 | Patch |
https://github.com/youngerheart/nodeserver/pull/6 | Exploit Patch |
https://vuldb.com/?ctiid.218461 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.218461 | Permissions Required Third Party Advisory |
Configurations
History
29 Feb 2024, 01:28
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
04 Nov 2023, 02:55
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-22 |
20 Oct 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
CWE | ||
Summary | A vulnerability has been found in youngerheart nodeserver and classified as critical. Affected by this vulnerability is an unknown functionality of the file nodeserver.js. The manipulation leads to path traversal. The identifier of the patch is c4c0f0138ab5afbac58e03915d446680421bde28. It is recommended to apply a patch to fix this issue. The identifier VDB-218461 was assigned to this vulnerability. |
25 Jan 2023, 17:51
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:nodeserver_project:nodeserver:*:*:*:*:*:*:*:* | |
First Time |
Nodeserver Project
Nodeserver Project nodeserver |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (MISC) https://github.com/youngerheart/nodeserver/commit/c4c0f0138ab5afbac58e03915d446680421bde28 - Patch, Third Party Advisory | |
References | (MISC) https://vuldb.com/?ctiid.218461 - Permissions Required, Third Party Advisory | |
References | (MISC) https://vuldb.com/?id.218461 - Permissions Required, Third Party Advisory | |
References | (MISC) https://github.com/youngerheart/nodeserver/pull/6 - Exploit, Patch, Third Party Advisory |
18 Jan 2023, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-18 01:15
Updated : 2024-05-17 01:48
NVD link : CVE-2020-36651
Mitre link : CVE-2020-36651
CVE.ORG link : CVE-2020-36651
JSON object : View
Products Affected
nodeserver_project
- nodeserver
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')