[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-32558":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":40,"aliases":50,"duplicate_of":9,"upstream":51,"downstream":52,"duplicates":55,"related":56,"reserved_at":9,"published_at":62,"modified_at":63,"state":64,"summary":65,"references_raw":73,"kevs":84,"epss":85,"epss_history":88,"metrics":352,"affected":358},"CVE-2023-32558","The use of the deprecated API `process.binding()` can bypass the permission model through path traversal. \n\nThis vulnerability affects all users using the experimental permission model in Node.js 20.x.\n\nPlease note that at the time this CVE was issued, the permission model is an experimental feature of Node.js.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-22","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.","weakness","Stable","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-126","Path Traversal",[],{"id":25,"name":26,"techniques":27},"CAPEC-64","Using Slashes and URL Encoding Combined to Bypass Validation Logic",[],{"id":29,"name":30,"techniques":31},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":33,"name":34,"techniques":35},"CAPEC-78","Using Escaped Slashes in Alternate Encoding",[],{"id":37,"name":38,"techniques":39},"CAPEC-79","Using Slashes in Alternate Encoding",[],[41],{"_key":42,"name":43,"source":44,"url":45,"maturity":46,"reliability_score":47,"verified":48,"type":9,"platforms":49,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_786C976713466E2D","Exploit Reference (hackerone.com)","reference","https://hackerone.com/reports/2051257","unknown",0.2,false,[],[],[],[53],{"_key":54},"OPENSUSE-SU-2024:13117-1",[],[57,58,60],{"_key":54},{"_key":59},"CGA-459F-7Q78-RXC5",{"_key":61},"CGA-PP3Q-JPHX-H7V6","2023-09-12T01:36:55.861Z","2025-04-30T22:25:00.415Z","Modified",{"cisa_kev":48,"cisa_ransomware":48,"cisa_vendor":9,"epss_severity":66,"epss_score":67,"severity":68,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":64},"low",0.00193,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",[74,80],{"url":45,"sources":75,"tags":77},[76,71],"cve.org",[78,79],"Exploit","Third Party Advisory",{"url":81,"sources":82,"tags":83},"https://security.netapp.com/advisory/ntap-20241025-0003/",[76,71],[],[],{"date":86,"score":67,"percentile":87},"2026-06-04",0.41013,[89,92,95,97,100,103,105,108,111,114,117,119,122,125,128,132,135,138,141,144,147,150,153,156,159,162,165,168,172,175,178,181,184,187,190,192,195,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,250,253,256,259,262,265,268,270,273,276,279,282,284,287,290,293,296,299,302,305,308,311,314,317,320,323,326,328,331,334,337,340,343,346,349],{"date":90,"score":67,"percentile":91},"2025-11-04",0.41426,{"date":93,"score":67,"percentile":94},"2025-11-05",0.41416,{"date":96,"score":67,"percentile":91},"2025-11-06",{"date":98,"score":67,"percentile":99},"2025-11-07",0.41454,{"date":101,"score":67,"percentile":102},"2025-11-08",0.41447,{"date":104,"score":67,"percentile":91},"2025-11-09",{"date":106,"score":67,"percentile":107},"2025-11-10",0.41392,{"date":109,"score":67,"percentile":110},"2025-11-11",0.41408,{"date":112,"score":67,"percentile":113},"2025-11-12",0.41438,{"date":115,"score":67,"percentile":116},"2025-11-13",0.41453,{"date":118,"score":67,"percentile":99},"2025-11-14",{"date":120,"score":67,"percentile":121},"2025-11-15",0.41452,{"date":123,"score":67,"percentile":124},"2025-11-16",0.4144,{"date":126,"score":67,"percentile":127},"2025-11-17",0.41409,{"date":129,"score":130,"percentile":131},"2025-11-18",0.00718,0.70203,{"date":133,"score":130,"percentile":134},"2025-11-19",0.70209,{"date":136,"score":130,"percentile":137},"2025-11-20",0.7022,{"date":139,"score":67,"percentile":140},"2025-11-21",0.41403,{"date":142,"score":67,"percentile":143},"2025-11-22",0.41406,{"date":145,"score":67,"percentile":146},"2025-11-23",0.41381,{"date":148,"score":67,"percentile":149},"2025-11-24",0.41371,{"date":151,"score":67,"percentile":152},"2025-11-25",0.41384,{"date":154,"score":67,"percentile":155},"2025-11-26",0.4138,{"date":157,"score":67,"percentile":158},"2025-11-27",0.41386,{"date":160,"score":67,"percentile":161},"2025-11-28",0.41359,{"date":163,"score":67,"percentile":164},"2025-11-29",0.41339,{"date":166,"score":67,"percentile":167},"2025-11-30",0.41315,{"date":169,"score":170,"percentile":171},"2025-12-01",0.00107,0.29433,{"date":173,"score":170,"percentile":174},"2025-12-02",0.29458,{"date":176,"score":170,"percentile":177},"2025-12-03",0.29466,{"date":179,"score":67,"percentile":180},"2025-12-04",0.41309,{"date":182,"score":67,"percentile":183},"2025-12-05",0.41335,{"date":185,"score":67,"percentile":186},"2025-12-06",0.41328,{"date":188,"score":67,"percentile":189},"2025-12-07",0.41308,{"date":191,"score":67,"percentile":167},"2025-12-08",{"date":193,"score":67,"percentile":194},"2025-12-09",0.4135,{"date":196,"score":67,"percentile":127},"2025-12-10",{"date":198,"score":67,"percentile":199},"2025-12-11",0.41439,{"date":201,"score":67,"percentile":202},"2025-12-12",0.41468,{"date":204,"score":67,"percentile":205},"2025-12-13",0.4145,{"date":207,"score":67,"percentile":208},"2025-12-14",0.41411,{"date":210,"score":67,"percentile":211},"2025-12-15",0.41397,{"date":213,"score":67,"percentile":214},"2025-12-16",0.41428,{"date":216,"score":67,"percentile":217},"2025-12-17",0.41469,{"date":219,"score":67,"percentile":220},"2025-12-18",0.41515,{"date":222,"score":67,"percentile":223},"2025-12-19",0.41528,{"date":225,"score":67,"percentile":226},"2025-12-20",0.41507,{"date":228,"score":67,"percentile":229},"2025-12-21",0.41467,{"date":231,"score":67,"percentile":232},"2025-12-22",0.41441,{"date":234,"score":67,"percentile":235},"2025-12-23",0.41442,{"date":237,"score":67,"percentile":238},"2025-12-24",0.41462,{"date":240,"score":67,"percentile":241},"2025-12-25",0.4151,{"date":243,"score":67,"percentile":244},"2025-12-26",0.4149,{"date":246,"score":67,"percentile":247},"2025-12-27",0.41508,{"date":249,"score":67,"percentile":208},"2025-12-28",{"date":251,"score":67,"percentile":252},"2025-12-29",0.41391,{"date":254,"score":67,"percentile":255},"2025-12-30",0.41382,{"date":257,"score":67,"percentile":258},"2025-12-31",0.41429,{"date":260,"score":170,"percentile":261},"2026-01-01",0.29662,{"date":263,"score":170,"percentile":264},"2026-01-02",0.29657,{"date":266,"score":170,"percentile":267},"2026-01-03",0.29642,{"date":269,"score":67,"percentile":149},"2026-01-04",{"date":271,"score":67,"percentile":272},"2026-01-05",0.41349,{"date":274,"score":67,"percentile":275},"2026-01-06",0.41351,{"date":277,"score":67,"percentile":278},"2026-01-07",0.41373,{"date":280,"score":67,"percentile":281},"2026-01-08",0.414,{"date":283,"score":67,"percentile":146},"2026-01-09",{"date":285,"score":67,"percentile":286},"2026-01-10",0.41383,{"date":288,"score":67,"percentile":289},"2026-01-11",0.41353,{"date":291,"score":67,"percentile":292},"2026-01-12",0.41307,{"date":294,"score":67,"percentile":295},"2026-01-13",0.41285,{"date":297,"score":67,"percentile":298},"2026-01-14",0.41333,{"date":300,"score":67,"percentile":301},"2026-01-15",0.41325,{"date":303,"score":67,"percentile":304},"2026-01-16",0.41348,{"date":306,"score":67,"percentile":307},"2026-01-17",0.41322,{"date":309,"score":67,"percentile":310},"2026-01-18",0.41288,{"date":312,"score":67,"percentile":313},"2026-01-19",0.41256,{"date":315,"score":67,"percentile":316},"2026-01-20",0.41244,{"date":318,"score":67,"percentile":319},"2026-01-21",0.41246,{"date":321,"score":67,"percentile":322},"2026-01-22",0.41237,{"date":324,"score":67,"percentile":325},"2026-01-23",0.41297,{"date":327,"score":67,"percentile":189},"2026-01-24",{"date":329,"score":67,"percentile":330},"2026-01-25",0.41255,{"date":332,"score":67,"percentile":333},"2026-01-26",0.41212,{"date":335,"score":67,"percentile":336},"2026-01-27",0.41211,{"date":338,"score":67,"percentile":339},"2026-01-28",0.41209,{"date":341,"score":67,"percentile":342},"2026-01-29",0.41191,{"date":344,"score":67,"percentile":345},"2026-01-30",0.41198,{"date":347,"score":67,"percentile":348},"2026-01-31",0.41206,{"date":350,"score":170,"percentile":351},"2026-02-01",0.29259,[353],{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":354,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":355,"vectorString":72,"impactScore":356,"exploitabilityScore":357},"HIGH",6,10,[359,427],{"ecosystem":9,"name":360,"vendor":361,"product":360,"cpe_part":362,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":363},"node","nodejs","a",[364,371,375,379,383,387,391,395,399,403,407,411,415,419,423],{"version":365,"is_range":366,"range_type":76,"version_start":367,"version_start_type":368,"version_end":369,"version_end_type":370,"fixed_in":9},">= 4.0, \u003C 4.*",true,"4.0","including","4.*","excluding",{"version":372,"is_range":366,"range_type":76,"version_start":373,"version_start_type":368,"version_end":374,"version_end_type":370,"fixed_in":9},">= 5.0, \u003C 5.*","5.0","5.*",{"version":376,"is_range":366,"range_type":76,"version_start":377,"version_start_type":368,"version_end":378,"version_end_type":370,"fixed_in":9},">= 6.0, \u003C 6.*","6.0","6.*",{"version":380,"is_range":366,"range_type":76,"version_start":381,"version_start_type":368,"version_end":382,"version_end_type":370,"fixed_in":9},">= 7.0, \u003C 7.*","7.0","7.*",{"version":384,"is_range":366,"range_type":76,"version_start":385,"version_start_type":368,"version_end":386,"version_end_type":370,"fixed_in":9},">= 8.0, \u003C 8.*","8.0","8.*",{"version":388,"is_range":366,"range_type":76,"version_start":389,"version_start_type":368,"version_end":390,"version_end_type":370,"fixed_in":9},">= 9.0, \u003C 9.*","9.0","9.*",{"version":392,"is_range":366,"range_type":76,"version_start":393,"version_start_type":368,"version_end":394,"version_end_type":370,"fixed_in":9},">= 10.0, \u003C 10.*","10.0","10.*",{"version":396,"is_range":366,"range_type":76,"version_start":397,"version_start_type":368,"version_end":398,"version_end_type":370,"fixed_in":9},">= 11.0, \u003C 11.*","11.0","11.*",{"version":400,"is_range":366,"range_type":76,"version_start":401,"version_start_type":368,"version_end":402,"version_end_type":370,"fixed_in":9},">= 12.0, \u003C 12.*","12.0","12.*",{"version":404,"is_range":366,"range_type":76,"version_start":405,"version_start_type":368,"version_end":406,"version_end_type":370,"fixed_in":9},">= 13.0, \u003C 13.*","13.0","13.*",{"version":408,"is_range":366,"range_type":76,"version_start":409,"version_start_type":368,"version_end":410,"version_end_type":370,"fixed_in":9},">= 14.0, \u003C 14.*","14.0","14.*",{"version":412,"is_range":366,"range_type":76,"version_start":413,"version_start_type":368,"version_end":414,"version_end_type":370,"fixed_in":9},">= 15.0, \u003C 15.*","15.0","15.*",{"version":416,"is_range":366,"range_type":76,"version_start":417,"version_start_type":368,"version_end":418,"version_end_type":370,"fixed_in":9},">= 17.0, \u003C 17.*","17.0","17.*",{"version":420,"is_range":366,"range_type":76,"version_start":421,"version_start_type":368,"version_end":422,"version_end_type":370,"fixed_in":9},">= 19.0, \u003C 19.*","19.0","19.*",{"version":424,"is_range":366,"range_type":76,"version_start":425,"version_start_type":368,"version_end":426,"version_end_type":370,"fixed_in":9},">= 20.0, \u003C 20.5.1","20.0","20.5.1",{"ecosystem":9,"name":428,"vendor":361,"product":428,"cpe_part":362,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":429},"node.js",[430],{"version":431,"is_range":366,"range_type":432,"version_start":433,"version_start_type":368,"version_end":426,"version_end_type":370,"fixed_in":9},"gte20.0.0_lt20.5.1","cpe","20.0.0"]