#VU65280 Security features bypass in Node.js


Published: 2022-07-13 | Updated: 2022-10-04

Vulnerability identifier: #VU65280

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-32222

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Node.js
Server applications / Web servers

Vendor: Node.js Foundation

Description

The vulnerability allows a remote attacker to bypass security restrictions

The vulnerability exists due to Node.js after start on linux based systems attempts to read /home/iojs/build/ws/out/Release/obj.target/deps/openssl/openssl.cnf, which ordinarily doesn't exist. A remote unauthenticated attacker can attemp to read openssl.cnf from /home/iojs/build/ upon startup to create this file and affect the default OpenSSL configuration for other users.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Node.js: 18.4.0, 18.3.0, 18.2.0, 18.1.0, 18.0.0

External links
http://nodejs.org/en/blog/vulnerability/september-2022-security-releases/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management Monitoring
Multiple vulnerabilities in IBM Cognos Dashboards on IBM Cloud Pak for Data
Multiple vulnerabilities in Siemens SINEC INS
IBM Watson Discovery for IBM Cloud Pak for Data update for Node.js
Multiple vulnerabilities in IBM Planning Analytics Workspace
Multiple vulnerabilities in IBM Event Streams
Multiple vulnerabilities in Node.js
Multiple vulnerabilities in Platform Navigator and Automation Assets in IBM Cloud Pak
Multiple vulnerabilities in IBM Answer Retrieval for Watson Discovery