Lucene search
Veracode Vulnerability DatabaseVERACODE:37308HistorySep 27, 2022 - 10:47 p.m.
Weak Cryptography
2022-09-2722:47:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
node.js
weak cryptography
remote attackers
sensitive information
0.002 Low
EPSS
Percentile
55.9%
nodejs contains weak encryption. Weak randomness in WebCrypto keygen allows remote unauthenticated attackers to gain access to sensitive information in the system.
Related
prion
prion
Code injection
2022-12-05 22:15:00
cve
cve
CVE-2022-35255
2022-12-05 22:15:10
nvd
nvd
CVE-2022-35255
2022-12-05 22:15:10
debiancve
debiancve
CVE-2022-35255
2022-12-05 22:15:10
hackerone
hackerone
Internet Bug Bounty: Use of Cryptographically Weak Pseudo-Random Number Generator in WebCrypto keygen
2023-02-28 07:06:10
Node.js: Weak randomness in WebCrypto keygen
2022-09-02 19:03:49
osv
osv
BIT-node-2022-35255
2024-03-06 11:03:16
CVE-2022-35255
2022-12-05 22:15:10
Important: nodejs:18 security update
2022-11-08 00:00:00
cvelist
cvelist
CVE-2022-35255
2022-12-05 00:00:00
alpinelinux
alpinelinux
CVE-2022-35255
2022-12-05 22:15:10
redhatcve
redhatcve
CVE-2022-35255
2022-09-28 13:49:07
ubuntucve
ubuntucve
CVE-2022-35255
2022-12-05 00:00:00
nessus
nessus
Rocky Linux 9 : nodejs (RLSA-2022:6963)
2023-02-06 00:00:00
Rocky Linux 8 : nodejs:18 (RLSA-2022:7821)
2023-11-06 00:00:00
Oracle Linux 8 : nodejs:18 (ELSA-2022-7821)
2022-11-15 00:00:00
oraclelinux
oraclelinux
nodejs security update
2022-10-17 00:00:00
nodejs:16 security update
2022-10-18 00:00:00
nodejs:18 security update
2022-11-15 00:00:00
rocky
rocky
nodejs:16 security update
2022-10-17 07:00:47
nodejs security update
2022-10-17 07:00:44
nodejs:18 security update
2022-11-08 10:51:14
ibm
ibm
Security Bulletin: Vulnerabilities in Node.js affect IBM Event Streams (CVE-2022-35255 and CVE-2022-35256)
2022-10-28 15:41:12
Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to Node.js vulnerabilities (CVE-2022-35256 and CVE-2022-35255)
2022-11-01 10:34:00
Security Bulletin: Multiple Vulnerabilities in node.js
2022-10-21 20:22:57
redhat
redhat
(RHSA-2022:6964) Important: nodejs:16 security update
2022-10-17 07:00:47
(RHSA-2022:7821) Important: nodejs:18 security update
2022-11-08 10:51:14
(RHSA-2022:6963) Important: nodejs security update
2022-10-17 07:00:44
almalinux
almalinux
Important: nodejs:16 security update
2022-10-17 00:00:00
Important: nodejs:18 security update
2022-11-08 00:00:00
Important: nodejs security update
2022-10-18 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3656-1)
2022-10-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3524-1)
2022-10-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3615-1)
2022-10-19 00:00:00
suse
suse
Security update for nodejs16 (important)
2022-10-18 00:00:00
Security update for nodejs16 (important)
2022-10-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package node version 16.17.1-alt1
2022-09-30 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: nodejs-18.12.1-1.fc37
2022-11-29 01:13:36
[SECURITY] Fedora 36 Update: nodejs-16.18.1-1.fc36
2022-11-29 01:28:04
[SECURITY] Fedora 35 Update: nodejs-16.18.1-1.fc35
2022-11-29 00:57:02
debian
debian
[SECURITY] [DSA 5326-1] nodejs security update
2023-01-24 20:01:20
nodejsblog
nodejsblog
September 23rd 2022 Security Releases
2022-09-15 00:00:00
ics
ics
Siemens SINEC INS
2023-01-17 12:00:00
gentoo
gentoo
Node.js: Multiple Vulnerabilities
2024-05-08 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00