[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-RHSA-2022:6963":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":21,"modified_at":22,"state":9,"summary":23,"references_raw":25,"kevs":86,"epss":9,"epss_history":87,"metrics":88,"affected":94},"RHSA-2022:6963","Red Hat Security Advisory: nodejs security update",null,[],[],[],[14,16],{"_key":15},"CVE-2022-35255",{"_key":17},"CVE-2022-35256",[],[],[],"2024-09-16T09:09:24Z","2025-11-22T12:39:04Z",{"cisa_kev":24,"cisa_ransomware":24,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[26,32,37,42,46,50,54,58,62,66,70,74,78,82],{"url":27,"sources":28,"tags":30},"https://access.redhat.com/errata/RHSA-2022:6963",[29],"osv_red_hat",[31],"Advisory",{"url":33,"sources":34,"tags":35},"https://access.redhat.com/security/updates/classification/#important",[29],[36],"ARTICLE",{"url":38,"sources":39,"tags":40},"https://bugzilla.redhat.com/show_bug.cgi?id=2130517",[29],[41],"REPORT",{"url":43,"sources":44,"tags":45},"https://bugzilla.redhat.com/show_bug.cgi?id=2130518",[29],[41],{"url":47,"sources":48,"tags":49},"https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6963.json",[29],[31],{"url":51,"sources":52,"tags":53},"https://access.redhat.com/security/cve/CVE-2022-35255",[29],[41],{"url":55,"sources":56,"tags":57},"https://www.cve.org/CVERecord?id=CVE-2022-35255",[29],[31],{"url":59,"sources":60,"tags":61},"https://nvd.nist.gov/vuln/detail/CVE-2022-35255",[29],[31],{"url":63,"sources":64,"tags":65},"https://hackerone.com/bugs?report_id=1690000",[29],[36],{"url":67,"sources":68,"tags":69},"https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#weak-randomness-in-webcrypto-keygen-high-cve-2022-35255",[29],[36],{"url":71,"sources":72,"tags":73},"https://access.redhat.com/security/cve/CVE-2022-35256",[29],[41],{"url":75,"sources":76,"tags":77},"https://www.cve.org/CVERecord?id=CVE-2022-35256",[29],[31],{"url":79,"sources":80,"tags":81},"https://nvd.nist.gov/vuln/detail/CVE-2022-35256",[29],[31],{"url":83,"sources":84,"tags":85},"https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256",[29],[36],[],[],[89],{"source":29,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":90,"cvss_v4_0":9},{"baseScore":91,"baseSeverity":9,"vectorString":92,"impactScore":4,"exploitabilityScore":93},8.2,"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",10,[95,107,111,115,119,123,127,131],{"ecosystem":96,"name":97,"vendor":98,"product":97,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":97,"source":9,"versions":100},"Red Hat","nodejs","redhat","rpm",[101],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},"lt1:16_17_1_1_el9_0",true,"ecosystem","1:16.17.1-1.el9_0","excluding",{"ecosystem":96,"name":108,"vendor":98,"product":108,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":108,"source":9,"versions":109},"nodejs-debuginfo",[110],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":112,"vendor":98,"product":112,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":112,"source":9,"versions":113},"nodejs-debugsource",[114],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":116,"vendor":98,"product":116,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":116,"source":9,"versions":117},"nodejs-docs",[118],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":120,"vendor":98,"product":120,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":120,"source":9,"versions":121},"nodejs-full-i18n",[122],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":124,"vendor":98,"product":124,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":124,"source":9,"versions":125},"nodejs-libs",[126],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":128,"vendor":98,"product":128,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":128,"source":9,"versions":129},"nodejs-libs-debuginfo",[130],{"version":102,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":105,"version_end_type":106,"fixed_in":9},{"ecosystem":96,"name":132,"vendor":98,"product":132,"cpe_part":9,"purl_type":99,"purl_namespace":98,"purl_name":132,"source":9,"versions":133},"npm",[134],{"version":135,"is_range":103,"range_type":104,"version_start":9,"version_start_type":9,"version_end":136,"version_end_type":106,"fixed_in":9},"lt1:8_15_0_1_16_17_1_1_el9_0","1:8.15.0-1.16.17.1.1.el9_0"]