vulnerability

Ubuntu: USN-6380-1 (CVE-2020-8174): Node.js vulnerabilities

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Jul 24, 2020	Sep 20, 2023	Aug 18, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Jul 24, 2020

Added

Sep 20, 2023

Modified

Aug 18, 2025

Description

napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.

ubuntu-pro-upgrade-libnode-devubuntu-pro-upgrade-libnode64ubuntu-pro-upgrade-nodejsubuntu-pro-upgrade-nodejs-dev

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.