Lucene search
HackeroneCVELIST:CVE-2023-23920HistoryFeb 23, 2023 - 12:00 a.m.
CVE-2023-23920
2023-02-2300:00:00
CWE-426
hackerone
www.cve.org
3
cve-2023-23920
node.js
vulnerability
icu data
An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.
CNA Affected
[
{
"vendor": "n/a",
"product": "https://github.com/nodejs/node",
"versions": [
{
"version": "Fixed in 19.6.1, 18.14.1, 16.19.1, 14.21.3",
"status": "affected"
}
]
}
]Related
alpinelinux
alpinelinux
CVE-2023-23920
2023-02-23 20:15:14
cbl_mariner
cbl_mariner
CVE-2023-23920 affecting package nodejs 14.21.1-3
2023-08-15 16:37:27
CVE-2023-23920 affecting package nodejs for versions less than 16.19.1-1
2023-03-24 23:56:25
veracode
veracode
Improper Access Control
2023-02-18 04:53:51
nvd
nvd
CVE-2023-23920
2023-02-23 20:15:14
cve
cve
CVE-2023-23920
2023-02-23 20:15:14
hackerone
hackerone
Node.js: Insecure loading of ICU data through ICU_DATA environment variable
2022-07-04 22:28:55
osv
osv
nodejs - security update
2023-05-02 00:00:00
BIT-node-2023-23920
2024-03-06 11:02:02
CVE-2023-23920
2023-02-23 20:15:14
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0606-1)
2023-03-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0682-1)
2023-03-28 00:00:00
Debian: Security Advisory (DSA-5395-1)
2023-05-03 00:00:00
ibm
ibm
nessus
nessus
Debian DSA-5395-1 : nodejs - security update
2023-05-03 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : nodejs12 (SUSE-SU-2023:0682-1)
2023-03-10 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : nodejs10 (SUSE-SU-2023:0606-1)
2023-03-05 00:00:00
debiancve
debiancve
CVE-2023-23920
2023-02-23 20:15:14
redhatcve
redhatcve
CVE-2023-23920
2023-02-21 16:59:16
prion
prion
Design/Logic Flaw
2023-02-23 20:15:00
ubuntucve
ubuntucve
CVE-2023-23920
2023-02-23 00:00:00
debian
debian
[SECURITY] [DSA 5395-1] nodejs security update
2023-05-02 13:50:05
[SECURITY] [DLA 3344-1] nodejs security update
2023-02-26 01:17:34
[SECURITY] [DSA 5589-1] nodejs security update
2023-12-27 22:12:40
mageia
mageia
Updated nodejs packages fix security vulnerability
2023-03-02 00:14:31
f5
f5
K000134602 : Node.js vulnerabilities CVE-2023-23918 and CVE-2023-23920
2023-05-15 00:00:00
ubuntu
ubuntu
Node.js vulnerabilities
2024-03-04 00:00:00
nodejsblog
nodejsblog
Thursday February 16 2023 Security Releases
2023-02-16 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: nodejs20-19.8.1-7.fc38
2023-04-04 18:17:01
[SECURITY] Fedora 38 Update: nodejs16-16.20.0-2.fc38
2023-04-04 18:17:01
[SECURITY] Fedora 38 Update: nodejs18-18.15.0-6.fc38
2023-04-04 18:17:01
redhat
redhat
altlinux
altlinux
Security fix for the ALT Linux 10 package node version 16.19.1-alt1
2023-03-22 00:00:00
oraclelinux
oraclelinux
nodejs and nodejs-nodemon security, bug fix, and enhancement update
2023-05-17 00:00:00
nodejs:18 security, bug fix, and enhancement update
2023-04-05 00:00:00
nodejs:14 security, bug fix, and enhancement update
2023-04-12 00:00:00
rocky
rocky
nodejs and nodejs-nodemon security, bug fix, and enhancement update
2023-05-25 19:53:09
nodejs:18 security, bug fix, and enhancement update
2023-04-06 15:52:43
nodejs:14 security, bug fix, and enhancement update
2023-04-26 15:28:13
almalinux
almalinux
Moderate: nodejs:18 security, bug fix, and enhancement update
2023-04-04 00:00:00
Important: nodejs:14 security, bug fix, and enhancement update
2023-04-12 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0011
2023-05-24 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0545
2023-03-07 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00