Node.js Update
1743Warning Date
Severity Level
Warning Number
Target Sector
7 September, 2021
● High
2021-3474
All
Description:
Node.js has released a security update to address several vulnerabilities in the following versions:
- Node.js
- versions prior to v12.22.6 (LTS)
- versions prior to v14.17.6 (LTS)
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Security restriction bypass
- Remote code execution
Best practice and Recommendations:
The CERT team encourages users to review Node.js security advisory and apply the necessary update: