Node.js Alert
1967Warning Date
Severity Level
Warning Number
Target Sector
18 January, 2022
● Medium
2022-4233
All
Node.js has released a security update to address several vulnerabilities in the following product:
- Node.js
- All versions of the 17.x, 16.x, 14.x, and 12.x releases lines
Attacker could exploit these vulnerabilities by doing the following:
- HTTP Request Smuggling
- Bypass of a protection mechanism
The CERT team encourages users to review Node.js security advisory and apply the necessary updates: