Vulnerabilities > CVE-2021-22930 - Use After Free vulnerability in multiple products

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
nodejs
netapp
siemens
debian
CWE-416
critical

Summary

Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.

Vulnerable Configurations

Part Description Count
Application
Nodejs
79
Application
Netapp
1
Application
Siemens
2
OS
Debian
1

Common Weakness Enumeration (CWE)