Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-21270

Versions less than 0.0.6 of the Node.js stringstream module are vulnerable to an out-of-bounds read because of allocation of uninitialized buffers when a number is passed in the input stream (when using Node.js 4.x).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.4%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 5.8
Products affected by CVE-2018-21270
  • Nodejs » Node.js » Version: 0.0.1
    cpe:2.3:a:nodejs:node.js:0.0.1
  • Nodejs » Node.js » Version: 0.0.2
    cpe:2.3:a:nodejs:node.js:0.0.2
  • Nodejs » Node.js » Version: 0.0.3
    cpe:2.3:a:nodejs:node.js:0.0.3
  • Nodejs » Node.js » Version: 0.0.4
    cpe:2.3:a:nodejs:node.js:0.0.4
  • Nodejs » Node.js » Version: 0.0.5
    cpe:2.3:a:nodejs:node.js:0.0.5


Products
Pricing
Contact Us

Shodan ® - All rights reserved