[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-RHSA-2023:1533":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":36,"duplicates":37,"related":38,"reserved_at":9,"published_at":39,"modified_at":40,"state":9,"summary":41,"references_raw":43,"kevs":284,"epss":9,"epss_history":285,"metrics":286,"affected":293},"RHSA-2023:1533","Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34],{"_key":15},"CVE-2021-35065",{"_key":17},"CVE-2021-44906",{"_key":19},"CVE-2022-24999",{"_key":21},"CVE-2022-25881",{"_key":23},"CVE-2022-3517",{"_key":25},"CVE-2022-35256",{"_key":27},"CVE-2022-38900",{"_key":29},"CVE-2022-43548",{"_key":31},"CVE-2022-4904",{"_key":33},"CVE-2023-23918",{"_key":35},"CVE-2023-23920",[],[],[],"2024-10-22T00:34:37Z","2026-06-04T10:01:34Z",{"cisa_kev":42,"cisa_ransomware":42,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[44,50,55,60,64,68,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184,188,192,196,200,204,208,212,216,220,224,228,232,236,240,244,248,252,256,260,264,268,272,276,280],{"url":45,"sources":46,"tags":48},"https://access.redhat.com/errata/RHSA-2023:1533",[47],"osv_red_hat",[49],"Advisory",{"url":51,"sources":52,"tags":53},"https://access.redhat.com/security/updates/classification/#important",[47],[54],"ARTICLE",{"url":56,"sources":57,"tags":58},"https://bugzilla.redhat.com/show_bug.cgi?id=2066009",[47],[59],"REPORT",{"url":61,"sources":62,"tags":63},"https://bugzilla.redhat.com/show_bug.cgi?id=2130518",[47],[59],{"url":65,"sources":66,"tags":67},"https://bugzilla.redhat.com/show_bug.cgi?id=2134609",[47],[59],{"url":69,"sources":70,"tags":71},"https://bugzilla.redhat.com/show_bug.cgi?id=2140911",[47],[59],{"url":73,"sources":74,"tags":75},"https://bugzilla.redhat.com/show_bug.cgi?id=2142823",[47],[59],{"url":77,"sources":78,"tags":79},"https://bugzilla.redhat.com/show_bug.cgi?id=2150323",[47],[59],{"url":81,"sources":82,"tags":83},"https://bugzilla.redhat.com/show_bug.cgi?id=2156324",[47],[59],{"url":85,"sources":86,"tags":87},"https://bugzilla.redhat.com/show_bug.cgi?id=2165824",[47],[59],{"url":89,"sources":90,"tags":91},"https://bugzilla.redhat.com/show_bug.cgi?id=2168631",[47],[59],{"url":93,"sources":94,"tags":95},"https://bugzilla.redhat.com/show_bug.cgi?id=2170644",[47],[59],{"url":97,"sources":98,"tags":99},"https://bugzilla.redhat.com/show_bug.cgi?id=2171935",[47],[59],{"url":101,"sources":102,"tags":103},"https://bugzilla.redhat.com/show_bug.cgi?id=2172217",[47],[59],{"url":105,"sources":106,"tags":107},"https://bugzilla.redhat.com/show_bug.cgi?id=2175828",[47],[59],{"url":109,"sources":110,"tags":111},"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1533.json",[47],[49],{"url":113,"sources":114,"tags":115},"https://access.redhat.com/security/cve/CVE-2021-35065",[47],[59],{"url":117,"sources":118,"tags":119},"https://www.cve.org/CVERecord?id=CVE-2021-35065",[47],[49],{"url":121,"sources":122,"tags":123},"https://nvd.nist.gov/vuln/detail/CVE-2021-35065",[47],[49],{"url":125,"sources":126,"tags":127},"https://security.snyk.io/vuln/SNYK-JS-GLOBPARENT-1314294",[47],[54],{"url":129,"sources":130,"tags":131},"https://access.redhat.com/security/cve/CVE-2021-44906",[47],[59],{"url":133,"sources":134,"tags":135},"https://www.cve.org/CVERecord?id=CVE-2021-44906",[47],[49],{"url":137,"sources":138,"tags":139},"https://nvd.nist.gov/vuln/detail/CVE-2021-44906",[47],[49],{"url":141,"sources":142,"tags":143},"https://github.com/advisories/GHSA-xvch-5gv4-984h",[47],[49],{"url":145,"sources":146,"tags":147},"https://access.redhat.com/security/cve/CVE-2022-3517",[47],[59],{"url":149,"sources":150,"tags":151},"https://www.cve.org/CVERecord?id=CVE-2022-3517",[47],[49],{"url":153,"sources":154,"tags":155},"https://nvd.nist.gov/vuln/detail/CVE-2022-3517",[47],[49],{"url":157,"sources":158,"tags":159},"https://access.redhat.com/security/cve/CVE-2022-4904",[47],[59],{"url":161,"sources":162,"tags":163},"https://www.cve.org/CVERecord?id=CVE-2022-4904",[47],[49],{"url":165,"sources":166,"tags":167},"https://nvd.nist.gov/vuln/detail/CVE-2022-4904",[47],[49],{"url":169,"sources":170,"tags":171},"https://github.com/c-ares/c-ares/issues/496",[47],[54],{"url":173,"sources":174,"tags":175},"https://access.redhat.com/security/cve/CVE-2022-24999",[47],[59],{"url":177,"sources":178,"tags":179},"https://www.cve.org/CVERecord?id=CVE-2022-24999",[47],[49],{"url":181,"sources":182,"tags":183},"https://nvd.nist.gov/vuln/detail/CVE-2022-24999",[47],[49],{"url":185,"sources":186,"tags":187},"https://github.com/expressjs/express/releases/tag/4.17.3",[47],[54],{"url":189,"sources":190,"tags":191},"https://github.com/ljharb/qs/pull/428",[47],[54],{"url":193,"sources":194,"tags":195},"https://github.com/n8tz/CVE-2022-24999",[47],[54],{"url":197,"sources":198,"tags":199},"https://access.redhat.com/security/cve/CVE-2022-25881",[47],[59],{"url":201,"sources":202,"tags":203},"https://www.cve.org/CVERecord?id=CVE-2022-25881",[47],[49],{"url":205,"sources":206,"tags":207},"https://nvd.nist.gov/vuln/detail/CVE-2022-25881",[47],[49],{"url":209,"sources":210,"tags":211},"https://access.redhat.com/security/cve/CVE-2022-35256",[47],[59],{"url":213,"sources":214,"tags":215},"https://www.cve.org/CVERecord?id=CVE-2022-35256",[47],[49],{"url":217,"sources":218,"tags":219},"https://nvd.nist.gov/vuln/detail/CVE-2022-35256",[47],[49],{"url":221,"sources":222,"tags":223},"https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/#http-request-smuggling-due-to-incorrect-parsing-of-header-fields-medium-cve-2022-35256",[47],[54],{"url":225,"sources":226,"tags":227},"https://access.redhat.com/security/cve/CVE-2022-38900",[47],[59],{"url":229,"sources":230,"tags":231},"https://www.cve.org/CVERecord?id=CVE-2022-38900",[47],[49],{"url":233,"sources":234,"tags":235},"https://nvd.nist.gov/vuln/detail/CVE-2022-38900",[47],[49],{"url":237,"sources":238,"tags":239},"https://github.com/SamVerschueren/decode-uri-component/issues/5",[47],[54],{"url":241,"sources":242,"tags":243},"https://github.com/advisories/GHSA-w573-4hg7-7wgq",[47],[49],{"url":245,"sources":246,"tags":247},"https://access.redhat.com/security/cve/CVE-2022-43548",[47],[59],{"url":249,"sources":250,"tags":251},"https://www.cve.org/CVERecord?id=CVE-2022-43548",[47],[49],{"url":253,"sources":254,"tags":255},"https://nvd.nist.gov/vuln/detail/CVE-2022-43548",[47],[49],{"url":257,"sources":258,"tags":259},"https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548",[47],[54],{"url":261,"sources":262,"tags":263},"https://access.redhat.com/security/cve/CVE-2023-23918",[47],[59],{"url":265,"sources":266,"tags":267},"https://www.cve.org/CVERecord?id=CVE-2023-23918",[47],[49],{"url":269,"sources":270,"tags":271},"https://nvd.nist.gov/vuln/detail/CVE-2023-23918",[47],[49],{"url":273,"sources":274,"tags":275},"https://access.redhat.com/security/cve/CVE-2023-23920",[47],[59],{"url":277,"sources":278,"tags":279},"https://www.cve.org/CVERecord?id=CVE-2023-23920",[47],[49],{"url":281,"sources":282,"tags":283},"https://nvd.nist.gov/vuln/detail/CVE-2023-23920",[47],[49],[],[],[287],{"source":47,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":288,"cvss_v4_0":9},{"baseScore":289,"baseSeverity":9,"vectorString":290,"impactScore":291,"exploitabilityScore":292},8.6,"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",7.8,10,[294,306,310,314,318,322,326,332,338],{"ecosystem":295,"name":296,"vendor":297,"product":296,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":296,"source":9,"versions":299},"Red Hat","nodejs","redhat","rpm",[300],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},"lt1:14_21_3_1_module+el8_4_0+18317+43f5ac16",true,"ecosystem","1:14.21.3-1.module+el8.4.0+18317+43f5ac16","excluding",{"ecosystem":295,"name":307,"vendor":297,"product":307,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":307,"source":9,"versions":308},"nodejs-debuginfo",[309],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},{"ecosystem":295,"name":311,"vendor":297,"product":311,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":311,"source":9,"versions":312},"nodejs-debugsource",[313],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},{"ecosystem":295,"name":315,"vendor":297,"product":315,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":315,"source":9,"versions":316},"nodejs-devel",[317],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},{"ecosystem":295,"name":319,"vendor":297,"product":319,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":319,"source":9,"versions":320},"nodejs-docs",[321],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},{"ecosystem":295,"name":323,"vendor":297,"product":323,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":323,"source":9,"versions":324},"nodejs-full-i18n",[325],{"version":301,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":305,"fixed_in":9},{"ecosystem":295,"name":327,"vendor":297,"product":327,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":327,"source":9,"versions":328},"nodejs-nodemon",[329],{"version":330,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":331,"version_end_type":305,"fixed_in":9},"lt0:2_0_20_3_module+el8_4_0+18317+43f5ac16","0:2.0.20-3.module+el8.4.0+18317+43f5ac16",{"ecosystem":295,"name":333,"vendor":297,"product":333,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":333,"source":9,"versions":334},"nodejs-packaging",[335],{"version":336,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":337,"version_end_type":305,"fixed_in":9},"lt0:23_3_module+el8_3_0+6519+9f98ed83","0:23-3.module+el8.3.0+6519+9f98ed83",{"ecosystem":295,"name":339,"vendor":297,"product":339,"cpe_part":9,"purl_type":298,"purl_namespace":297,"purl_name":339,"source":9,"versions":340},"npm",[341],{"version":342,"is_range":302,"range_type":303,"version_start":9,"version_start_type":9,"version_end":343,"version_end_type":305,"fixed_in":9},"lt1:6_14_18_1_14_21_3_1_module+el8_4_0+18317+43f5ac16","1:6.14.18-1.14.21.3.1.module+el8.4.0+18317+43f5ac16"]