CVE-2020-8174 vulnerability in nodejs and Other Products
Published on July 24, 2020

napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.

Vendor Advisory NVD

Weakness Type

What is a Buffer Overflow Vulnerability?

The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

CVE-2020-8174 has been classified to as a Buffer Overflow vulnerability or weakness.

Products Associated with CVE-2020-8174

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-8174 are published in these products:

nodejs node.js

Oracle Banking Extensibility Workbench

Oracle Mysql Cluster

Oracle Retail Xstore Point Of Service

NetApp Active Iq Unified Manager

NetApp Oncommand Insight

NetApp Oncommand Workflow Automation

NetApp Snapcenter

Oracle Blockchain Platform

Canonical Ubuntu Linux

Exploit Probability

EPSS

1.55%

Percentile

81.12%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-8174 vulnerability in nodejs and Other ProductsPublished on July 24, 2020

Weakness Type

What is a Buffer Overflow Vulnerability?

Products Associated with CVE-2020-8174

Exploit Probability

CVE-2020-8174 vulnerability in nodejs and Other Products
Published on July 24, 2020