Published: 14/07/2022 Updated: 24/07/2023

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 0

A cryptographic vulnerability exists on Node.js on linux in versions of 18.x before 18.40.0 which allowed a default path for openssl.cnf that might be accessible under some circumstances to a non-admin user instead of /etc/ssl as was the case in versions prior to the upgrade to OpenSSL 3.

Vulnerable Product	Search on Vulmon	Subscribe to Product
nodejs node.js
siemens sinec ins 1.0
siemens sinec ins

ALAS-2023-286 Amazon Linux 2022 Security Advisory: ALAS-2023-286 Advisory Release Date: 2023-01-31 21:11 Pacific Advisory Updated Date: 2023-01-31 21:11 Pac ...

A repository of strace results for lots of packages.

Omega Tracer This repository contains strace output for execution of various packages, along with scripts to generate the output Is that useful? This method was succesful in discovering CVE-2022-32222 affecting Nodejs It's possible that similar output generated across many packages will yield other interesting results That said, this is an experiment and may be complet

CWE-427 https://hackerone.com/reports/1695596 https://nvd.nist.gov https://github.com/scovetta/omega-stracedb https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-03

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-32222

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect