CVE-2021-22918

CWE-125 — Out-of-bounds Read8 documents8 sources

Severity

5.3MEDIUM

EPSS

0.7%

top 27.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nodejs Node Nodejs Node.js Siemens Sinec Infrastructure Network Services

Timeline

PublishedJul 12

Latest updateJul 13

Description

Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶CVEListV5nodejs/node4.0 — 4.*+12

▶NVDnodejs/node.js12.0.0 — 12.22.2+2

▶NVDsiemens/sinec_infrastructure_network_services< 1.0.1.1

▶Debianlibuv1< 1.40.0-2+3

Patches

Patch: cert-portal.siemens.com ↗Patch: nodejs.org ↗Patch: cert-portal.siemens.com ↗

🔴Vulnerability Details

GHSA

Out-of-Bounds Read in Node.js↗2021-07-13

▶

CVEList

CVE-2021-22918: Node↗2021-07-12

▶

OSV

CVE-2021-22918: Node↗2021-07-12

▶

📋Vendor Advisories

Microsoft

Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether i↗2021-07-13

▶

Ubuntu

libuv vulnerability↗2021-07-07

▶

Red Hat

libuv: out-of-bounds read in uv__idna_toascii() can lead to information disclosures or crashes↗2021-07-01

▶

Debian

CVE-2021-22918: libuv1 - Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read w...↗2021

▶