Skip to main content

Moment

3 CVEs product

Monthly

CVE-2022-31129 LIB HIGH POC PATCH This Week

moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Moment Fedora Debian Linux
NVD GitHub
CVSS 3.1
7.5
EPSS
4.9%
CVE-2022-24785 LIB HIGH PATCH This Week

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Node.js Path Traversal Moment Tenable Sc Active Iq +2
NVD GitHub
CVSS 3.1
7.5
EPSS
5.7%
CVE-2016-4055 npm MEDIUM POC PATCH This Month

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Node.js Moment Nessus Primavera Unifier
NVD VulDB
CVSS 3.1
6.5
EPSS
2.7%
EPSS 5% CVSS 7.5
HIGH POC PATCH This Week

moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Moment Fedora +1
NVD GitHub
EPSS 6% CVSS 7.5
HIGH PATCH This Week

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Node.js Path Traversal Moment +4
NVD GitHub
EPSS 3% CVSS 6.5
MEDIUM POC PATCH This Month

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Node.js Moment +2
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy