CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
9.5%
Node.js is used as runtime and SDK for Apache Cordova applications within IBM Rational® Application Developer for WebSphere® Software. Information about security vulnerabilities affecting Node.js has been published in a security bulletin.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Product(s) | Version(s) |
---|---|
Rational Application Developer | 9.6 |
Rational Application Developer | 9.7 |
IBM strongly recommends addressing the vulnerability now by upgrading to Node.js latest-18.x, please follow Upgrading the Node.js that is used by Cordova or NodeRed to upgrade.
None
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | rational_application_developer_for_websphere_software | 9.6 | cpe:2.3:a:ibm:rational_application_developer_for_websphere_software:9.6:*:*:*:*:*:*:* |
ibm | rational_application_developer_for_websphere_software | 9.7 | cpe:2.3:a:ibm:rational_application_developer_for_websphere_software:9.7:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
9.5%