BIT-node-min-2025-23087

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/node-min/BIT-node-min-2025-23087.json
JSON Data
https://api.test.osv.dev/v1/vulns/BIT-node-min-2025-23087
Aliases
Published
2025-01-27T07:15:32.232Z
Modified
2025-02-06T07:42:16.889Z
Summary
[none]
Details

This CVE has been issued to inform users that they are using End-of-Life (EOL) versions of Node.js. These versions are no longer supported and do not receive updates, including security patches. The continued use of EOL versions may expose systems to potential security risks due to unaddressed software vulnerabilities or dependencies (CWE-1104: Use of Unmaintained Third-Party Components). NOTE: use of the CVE List to report that a product is unsupported, without reference to a specific defect, is novel and the CVE Program is actively assessing both the validity and potential value of this approach.

Users are advised to upgrade to actively supported versions of Node.js to ensure continued security updates and support.

Database specific
{
    "cpes": [
        "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*"
    ],
    "severity": "High"
}
References

Affected packages

Bitnami / node-min

Package

Name
node-min
Purl
pkg:bitnami/node-min

Severity

  • 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
17.0.0
Last affected
17.9.1
Introduced
16.0.0
Last affected
16.20.2
Introduced
15.0.0
Last affected
15.14.0
Introduced
14.0.0
Last affected
14.21.3
Introduced
13.0.0
Last affected
13.14.0
Introduced
12.0.0
Last affected
12.22.12
Introduced
11.0.0
Last affected
11.15.0
Introduced
10.0.0
Last affected
10.24.1
Introduced
9.0.0
Last affected
9.11.2
Introduced
8.0.0
Last affected
8.17.0
Introduced
7.0.0
Last affected
7.10.1
Introduced
6.0.0
Last affected
6.17.1
Introduced
5.0.0
Last affected
5.12.0
Introduced
4.0.0
Last affected
4.9.1
Introduced
3.0.0
Last affected
3.3.1
Introduced
2.0.0
Last affected
2.13.2
Introduced
1.0.0
Last affected
1.8.4
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
0.12.18