CVE-2023-23920 - CERT CVE

  1. CVE-2023-23920

ID CVE-2023-23920
Sažetak An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.
Reference
CVSS
Base: 4.2
Impact: 3.6
Exploitability:0.6
Pristup
VektorSloženostAutentikacija
LOCAL LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
NONE HIGH NONE
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
Zadnje važnije ažuriranje 17-03-2025 - 19:15
Objavljeno 23-02-2023 - 20:15