Vulnerabilities > CVE-2021-22940 - Use After Free vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE

Summary

Node.js before 16.6.1, 14.17.5, and 12.22.5 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.

Vulnerable Configurations

Part Description Count
Application
Nodejs
83
Application
Oracle
16
Application
Netapp
1
Application
Siemens
2
OS
Debian
1

Common Weakness Enumeration (CWE)