CVE-2022-32222
CVSS v3.1
5.3 (Medium)
EPSS
0.06 % (27th)
Affected Products
2
Advisories
3
A cryptographic vulnerability exists on Node.js on linux in versions of 18.x prior to 18.40.0 which allowed a default path for openssl.cnf that might be accessible under some circumstances to a non-admin user instead of /etc/ssl as was the case in versions prior to the upgrade to OpenSSL 3.
- CVE Status
- PUBLISHED
- CNA
- HackerOne
- Published Date
-
2022-07-14 15:15:08
(2 years ago) - Updated Date
-
2023-07-24 13:16:33
(14 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...