CVE-2021-22884

Home/CVE/Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes �

CVE

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes �

Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhost6”. When “localhost6” is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim's DNS server or can spoof its responses, the DNS rebinding protection can be bypassed by using the “localhost6” domain.

As long as the attacker uses the “localhost6” domain, they can still apply the attack described in CVE-2018-7160.

HIGH · CVSS 7.5 EPSS 0.0027

Act now

Public exploit or PoC is available
CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-350Reliance on Reverse DNS Resolution for a Security-Critical Action

▤

Affected Products & Versions

nodejs node.js>= 10.0.0 and < 10.24.0
nodejs node.js>= 12.0.0 and < 12.21.0
nodejs node.js>= 14.0.0 and < 14.16.0
nodejs node.js>= 15.0.0 and < 15.10.0
fedoraproject fedoraall versions
netapp active iq unified managerall versions
netapp e-series performance analyzerall versions
netapp oncommand insightall versions
Show all 16 affected productsnetapp oncommand workflow automationall versions
netapp snapcenterall versions
oracle graalvmall versions
oracle jd edwards enterpriseone tools< 9.2.6.0
oracle mysql cluster<= 8.0.25
oracle nosql database< 20.3
oracle peoplesoft enterprise peopletoolsall versions
siemens sinec infrastructure network services< 1.0.1.1

⚠

Public Exploits & PoCs

pochackerone.com · 1069487hackerone.com

▣

Scoring & Timeline

7.5

HIGH · CVSS v3.1 · support@hackerone.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD03 Mar 2021 · 06:15 PM

CVSS VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

⚑

Vendor Advisories

suse-csafopenSUSE-SU-2024:11096-1
usnUSN-6418-1
rhsaRHSA-2022:6595Moderate
rhsaRHSA-2022:6449Moderate
rhsaRHSA-2022:6985Moderate
Show all 30 vendor advisoriesrhsaRHSA-2022:6448Moderate
rhsaRHSA-2022:6389Moderate
siemens-csafSSA-389290
suse-csafSUSE-SU-2021:2620-1
suse-csafopenSUSE-SU-2021:0389-1
suse-csafopenSUSE-SU-2021:0372-1
suse-csafSUSE-SU-2021:0673-1
suse-csafSUSE-SU-2021:0674-1
suse-csafSUSE-SU-2021:0686-1
suse-csafopenSUSE-SU-2021:0356-1
suse-csafopenSUSE-SU-2021:0357-1
suse-csafSUSE-SU-2021:0648-1
suse-csafSUSE-SU-2021:0649-1
suse-csafSUSE-SU-2021:0650-1
suse-csafSUSE-SU-2021:0651-1
rhsaRHSA-2021:0744Important
rhsaRHSA-2021:0734Important
rhsaRHSA-2021:0830Important
rhsaRHSA-2021:0831Important
rhsaRHSA-2021:0738Important
rhsaRHSA-2021:0735Important
rhsaRHSA-2021:0739Important
rhsaRHSA-2021:0827Important
rhsaRHSA-2021:0740Important
rhsaRHSA-2021:0741Important

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdfPatchThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E4FRS5ZVK4ZQ7XIJQNGIKUXG2DJFHLO7/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F45Y7TXSU33MTKB6AGL2Q5V5ZOCNPKOG/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSYFUGKFUSZ27M5TEZ3FKILWTWFJTFAZ/

https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/PatchRelease NotesVendor Advisory

https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/#node-js-inspector-dns-rebinding-vulnerability-cve-2018-7160PatchRelease NotesVendor Advisory

Show all 11 references

https://security.netapp.com/advisory/ntap-20210416-0001/Third Party Advisory

https://security.netapp.com/advisory/ntap-20210723-0001/Third Party Advisory

https://www.oracle.com//security-alerts/cpujul2021.htmlPatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuApr2021.htmlPatchThird Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.htmlPatchThird Party Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin