Buffer overflow vulnerability in Node.js - CVE-2020-8252(MacOS)| ID: oval:org.secpod.oval:def:83393 | Date: (C)2022-08-26 (M)2023-12-03 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Node.js 14.0.0 before 14.9.0 and is buffer overflow vulnerability. A flaw is present in the application which fails to handle realpath in libuv. Successful exploitation allows an attacker to cause buffer overflow if the resolved path is longer than 256 bytes.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Apple Mac OS 11 |
| Apple Mac OS 12 |
