March 22, 2024
Severity High Analysis Summary Ducktail Malware is a malicious program designed by hackers to infiltrate computers and networks globally. Ducktail malware is typically delivered through a […]
Rewterz Threat Advisory – Multiple Microsoft Defender Vulnerabilities
February 20, 2023
Rewterz Threat Advisory – CVE-2023-25613 – Apache Kerby Vulnerability
February 21, 2023
Rewterz Threat Advisory – Multiple Microsoft Defender Vulnerabilities
February 20, 2023
Rewterz Threat Advisory – CVE-2023-25613 – Apache Kerby Vulnerability
February 21, 2023
Severity
Medium
Analysis Summary
CVE-2023-23918 CVSS:6.5
Node.js could allow a remote authenticated attacker to bypass security restrictions, caused by a flaw when enable the experimental permissions option with –experimental-policy. By sending a specially-crafted request using process.mainModule.require(), an attacker could exploit this vulnerability to bypass Permissions and access non authorized modules.
CVE-2023-23919 CVSS:5.9
Node.js is vulnerable to a denial of service, caused by not clear the OpenSSL error stack after operations. By sending specially-crafted cryptographic operations, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-23936 CVSS:6.5
Node.js is vulnerable to CRLF injection, caused by a flaw in the fetch API. By sending a specially-crafted HTTP response containing CRLF character sequences, a remote attacker could exploit this vulnerability to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning, session hijacking, HTTP response splitting or HTTP header injection.
CVE-2023-24807 CVSS:7.5
Node.js is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the Headers.set() and Headers.append() methods in the fetch API. By sending a specially-crafted regex input, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-23920 CVSS:2.7
Node.js could allow a remote authenticated attacker to bypass security restrictions, caused by improper access control. By sending a specially-crafted request using ICU_DATA environment variable, an attacker could exploit this vulnerability to search and potentially load ICU data.
Impact
- Security Bypass
- Unauthorized Access
- Denial of Service
Indicators Of Compromise
CVE
CVE-2023-23918
CVE-2023-23919
CVE-2023-23936
CVE-2023-24807
CVE-2023-23920
Affected Vendors
Node.js
Affected Products
- Node.js 14.0
- Node.js 16.0
- Node.js 18.0Node.js 19.0
Remediation
Refer to GitHub Website for patch, upgrade or suggested workaround information.