NodeJS/seneca/0.5.7
A Microservices Framework for Node.js
https://www.npmjs.com/package/seneca
MIT
2 Security Vulnerabilities
Sensitive Data Exposure in seneca
Published date: 2019-09-11T23:07:57Z
CVE: CVE-2019-5483
Links:
Versions of seneca
prior to 3.9.0 are vulnerable to Sensitive Data Exposure. When a process using the package crashes all environment variables are printed. This may leak sensitive data such as access keys, especially given scenarios when log-monitoring systems store the error output.
Recommendation
Upgrade to version 3.9.0 or later.
Affected versions:
["0.0.1", "0.4.1", "0.4.2", "0.4.3", "0.4.4", "0.5.0", "0.5.1", "0.5.2", "0.5.3", "0.5.4", "0.5.5", "0.5.6", "0.5.7", "0.5.8", "0.5.9", "0.5.10", "0.5.11", "0.5.12", "0.5.13", "0.5.14", "0.5.15", "0.5.16", "0.5.17", "0.5.18", "0.5.19", "0.5.20", "0.5.21", "0.6.0", "0.6.0-rc2", "0.6.1-rc0", "0.6.1-rc1", "0.6.1-rc2", "0.6.1", "0.6.2", "0.6.3", "0.6.4", "0.6.5", "0.7.0", "0.7.1", "0.7.2", "0.8.0", "0.9.0", "0.9.1", "0.9.2", "0.9.3", "1.0.0", "1.1.0", "1.2.0", "1.3.0", "1.4.0", "2.0.0", "2.0.1", "2.1.0", "3.0.0", "3.1.0", "3.2.0", "3.2.1", "3.2.2", "3.3.0", "3.4.0-rc0", "3.4.0", "3.4.1", "3.4.2", "3.4.3", "3.5.0", "3.6.0", "3.7.0", "3.8.0-rc3", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4"]
Secure versions:
[3.9.0, 3.10.0, 3.11.0, 3.12.0, 3.12.1, 3.13.0, 3.13.1, 3.13.2, 3.13.3, 3.14.0, 3.14.1, 3.15.1, 3.15.2, 3.15.3, 3.15.4, 3.16.0, 3.16.1, 3.17.0, 3.18.0, 3.19.0, 3.20.0, 3.20.1, 3.20.2, 3.20.3, 3.20.4, 3.20.5, 3.20.6, 3.21.0, 3.21.1, 3.21.2, 3.22.0, 3.23.0, 3.23.1, 3.23.2, 3.23.3, 3.24.0, 3.24.1, 3.25.0, 3.26.0, 3.26.1, 3.26.2, 3.27.0, 3.27.1, 3.27.2, 3.28.0, 3.28.2, 3.29.0, 3.30.0, 3.30.1, 3.31.0, 3.31.1, 3.31.2, 3.32.0, 3.32.1, 3.33.0, 3.34.0, 3.34.1, 3.35.2, 3.35.3, 3.36.0, 4.0.0-rc.2, 4.0.0-rc2, 3.37.0, 3.37.1, 4.0.0-rc3, 3.37.2, 4.0.0-rc4]
Recommendation:
Update to version 3.37.2.
Information Exposure Through an Error Message
Published date: 2019-09-03
CVEs: ["CVE-2019-5483"]
CVSS Score: 3.3
CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
environment variable leakage in error reporting
Affected versions:
["0.0.1", "0.4.1", "0.4.2", "0.4.3", "0.4.4", "0.5.0", "0.5.1", "0.5.2", "0.5.3", "0.5.4", "0.5.5", "0.5.6", "0.5.7", "0.5.8", "0.5.9", "0.5.10", "0.5.11", "0.5.12", "0.5.13", "0.5.14", "0.5.15", "0.5.16", "0.5.17", "0.5.18", "0.5.19", "0.5.20", "0.5.21", "0.6.0", "0.6.0-rc2", "0.6.1-rc0", "0.6.1-rc1", "0.6.1-rc2", "0.6.1", "0.6.2", "0.6.3", "0.6.4", "0.6.5", "0.7.0", "0.7.1", "0.7.2", "0.8.0", "0.9.0", "0.9.1", "0.9.2", "0.9.3", "1.0.0", "1.1.0", "1.2.0", "1.3.0", "1.4.0", "2.0.0", "2.0.1", "2.1.0", "3.0.0", "3.1.0", "3.2.0", "3.2.1", "3.2.2", "3.3.0", "3.4.0-rc0", "3.4.0", "3.4.1", "3.4.2", "3.4.3", "3.5.0", "3.6.0", "3.7.0", "3.8.0-rc3", "3.8.0", "3.8.1", "3.8.2", "3.8.3", "3.8.4"]
Secure versions:
[3.9.0, 3.10.0, 3.11.0, 3.12.0, 3.12.1, 3.13.0, 3.13.1, 3.13.2, 3.13.3, 3.14.0, 3.14.1, 3.15.1, 3.15.2, 3.15.3, 3.15.4, 3.16.0, 3.16.1, 3.17.0, 3.18.0, 3.19.0, 3.20.0, 3.20.1, 3.20.2, 3.20.3, 3.20.4, 3.20.5, 3.20.6, 3.21.0, 3.21.1, 3.21.2, 3.22.0, 3.23.0, 3.23.1, 3.23.2, 3.23.3, 3.24.0, 3.24.1, 3.25.0, 3.26.0, 3.26.1, 3.26.2, 3.27.0, 3.27.1, 3.27.2, 3.28.0, 3.28.2, 3.29.0, 3.30.0, 3.30.1, 3.31.0, 3.31.1, 3.31.2, 3.32.0, 3.32.1, 3.33.0, 3.34.0, 3.34.1, 3.35.2, 3.35.3, 3.36.0, 4.0.0-rc.2, 4.0.0-rc2, 3.37.0, 3.37.1, 4.0.0-rc3, 3.37.2, 4.0.0-rc4]
Recommendation:
Update seneca module to version >=3.9.0
140 Other Versions
Version | License | Security | Released | |
---|---|---|---|---|
4.0.0-rc4 | MIT | 2024-07-12 - 16:43 | 4 months | |
4.0.0-rc3 | MIT | 2024-07-11 - 13:21 | 4 months | |
4.0.0-rc.2 | MIT | 2024-06-06 - 21:11 | 5 months | |
4.0.0-rc2 | MIT | 2024-06-06 - 21:17 | 5 months | |
3.37.2 | MIT | 2024-07-12 - 16:06 | 4 months | |
3.37.1 | MIT | 2024-07-11 - 12:57 | 4 months | |
3.37.0 | MIT | 2024-06-10 - 14:26 | 5 months | |
3.36.0 | MIT | 2024-05-03 - 11:17 | 7 months | |
3.35.3 | MIT | 2024-04-26 - 11:26 | 7 months | |
3.35.2 | MIT | 2024-03-06 - 16:26 | 8 months | |
3.34.1 | MIT | 2024-01-19 - 17:23 | 10 months | |
3.34.0 | MIT | 2024-01-18 - 14:03 | 10 months | |
3.33.0 | MIT | 2023-11-05 - 12:56 | about 1 year | |
3.32.1 | MIT | 2023-09-16 - 13:57 | about 1 year | |
3.32.0 | MIT | 2023-06-29 - 22:48 | over 1 year | |
3.31.2 | MIT | 2023-06-29 - 14:44 | over 1 year | |
3.31.1 | MIT | 2023-06-29 - 13:18 | over 1 year | |
3.31.0 | MIT | 2023-06-29 - 12:29 | over 1 year | |
3.30.1 | MIT | 2023-05-31 - 13:35 | over 1 year | |
3.30.0 | MIT | 2023-02-10 - 14:54 | almost 2 years | |
3.29.0 | MIT | 2022-09-01 - 22:53 | about 2 years | |
3.28.2 | MIT | 2022-06-20 - 18:25 | over 2 years | |
3.28.0 | MIT | 2022-05-23 - 10:58 | over 2 years | |
3.27.2 | MIT | 2022-05-20 - 02:26 | over 2 years | |
3.27.1 | MIT | 2022-05-14 - 23:38 | over 2 years | |
3.27.0 | MIT | 2022-05-12 - 22:03 | over 2 years | |
3.26.2 | MIT | 2022-04-18 - 01:17 | over 2 years | |
3.26.1 | MIT | 2022-04-18 - 00:30 | over 2 years | |
3.26.0 | MIT | 2022-04-08 - 15:37 | over 2 years | |
3.25.0 | MIT | 2021-11-03 - 19:54 | about 3 years | |
3.24.1 | MIT | 2021-10-12 - 10:38 | about 3 years | |
3.24.0 | MIT | 2021-09-14 - 18:32 | about 3 years | |
3.23.3 | MIT | 2021-04-19 - 19:42 | over 3 years | |
3.23.2 | MIT | 2021-01-14 - 15:19 | almost 4 years | |
3.23.1 | MIT | 2020-12-10 - 18:33 | almost 4 years | |
3.23.0 | MIT | 2020-11-30 - 15:38 | almost 4 years | |
3.22.0 | MIT | 2020-07-02 - 00:10 | over 4 years | |
3.21.2 | MIT | 2020-05-26 - 18:06 | over 4 years | |
3.21.1 | MIT | 2020-05-26 - 02:31 | over 4 years | |
3.21.0 | MIT | 2020-05-18 - 23:51 | over 4 years | |
3.20.6 | MIT | 2020-05-14 - 22:36 | over 4 years | |
3.20.5 | MIT | 2020-05-11 - 10:31 | over 4 years | |
3.20.4 | MIT | 2020-05-11 - 10:18 | over 4 years | |
3.20.3 | MIT | 2020-03-30 - 19:47 | over 4 years | |
3.20.2 | MIT | 2020-03-12 - 00:19 | over 4 years | |
3.20.1 | MIT | 2020-01-29 - 17:30 | almost 5 years | |
3.20.0 | MIT | 2020-01-28 - 17:32 | almost 5 years | |
3.19.0 | MIT | 2020-01-28 - 00:27 | almost 5 years | |
3.18.0 | MIT | 2020-01-16 - 19:04 | almost 5 years | |
3.17.0 | MIT | 2019-10-02 - 19:17 | about 5 years | |
3.16.1 | MIT | 2019-09-30 - 13:18 | about 5 years | |
3.16.0 | MIT | 2019-09-20 - 17:01 | about 5 years | |
3.15.4 | MIT | 2019-09-20 - 15:54 | about 5 years | |
3.15.3 | MIT | 2019-09-20 - 12:46 | about 5 years | |
3.15.2 | MIT | 2019-09-19 - 22:13 | about 5 years | |
3.15.1 | MIT | 2019-09-09 - 17:06 | about 5 years | |
3.14.1 | MIT | 2019-09-04 - 12:06 | about 5 years | |
3.14.0 | MIT | 2019-09-02 - 21:13 | about 5 years | |
3.13.3 | MIT | 2019-08-14 - 23:47 | over 5 years | |
3.13.2 | MIT | 2019-08-09 - 00:28 | over 5 years | |
3.13.1 | MIT | 2019-08-07 - 01:29 | over 5 years | |
3.13.0 | MIT | 2019-07-31 - 03:33 | over 5 years | |
3.12.1 | MIT | 2019-07-26 - 00:09 | over 5 years | |
3.12.0 | MIT | 2019-07-22 - 21:35 | over 5 years | |
3.11.0 | MIT | 2019-05-14 - 23:46 | over 5 years | |
3.10.0 | MIT | 2019-05-12 - 20:02 | over 5 years | |
3.9.0 | MIT | 2019-05-06 - 15:47 | over 5 years | |
3.8.4 | MIT | 2 | 2019-03-03 - 17:00 | over 5 years |
3.8.3 | MIT | 2 | 2019-02-25 - 19:45 | over 5 years |
3.8.2 | MIT | 2 | 2019-02-17 - 02:22 | over 5 years |
3.8.1 | MIT | 2 | 2019-02-10 - 17:10 | almost 6 years |
3.8.0 | MIT | 2 | 2019-01-13 - 01:02 | almost 6 years |
3.8.0-rc3 | MIT | 2 | 2018-12-23 - 12:58 | almost 6 years |
3.7.0 | MIT | 2 | 2018-07-18 - 11:26 | over 6 years |
3.6.0 | MIT | 2 | 2018-05-28 - 23:14 | over 6 years |
3.5.0 | MIT | 2 | 2018-05-14 - 17:30 | over 6 years |
3.4.3 | MIT | 2 | 2017-10-14 - 07:03 | about 7 years |
3.4.2 | MIT | 2 | 2017-08-10 - 09:56 | over 7 years |
3.4.1 | MIT | 2 | 2017-07-06 - 13:55 | over 7 years |
3.4.0 | MIT | 2 | 2017-07-03 - 12:34 | over 7 years |
3.4.0-rc0 | MIT | 2 | 2017-06-16 - 15:23 | over 7 years |
3.3.0 | MIT | 2 | 2017-02-07 - 02:11 | almost 8 years |
3.2.2 | MIT | 2 | 2016-10-25 - 15:49 | about 8 years |
3.2.1 | MIT | 2 | 2016-09-27 - 19:17 | about 8 years |
3.2.0 | MIT | 2 | 2016-09-27 - 13:02 | about 8 years |
3.1.0 | MIT | 2 | 2016-09-16 - 13:52 | about 8 years |
3.0.0 | MIT | 2 | 2016-08-26 - 12:59 | about 8 years |
2.1.0 | MIT | 2 | 2016-05-20 - 12:11 | over 8 years |
2.0.1 | MIT | 2 | 2016-04-13 - 13:48 | over 8 years |
2.0.0 | MIT | 2 | 2016-03-22 - 17:10 | over 8 years |
1.4.0 | MIT | 2 | 2016-03-16 - 15:03 | over 8 years |
1.3.0 | MIT | 2 | 2016-03-01 - 16:42 | over 8 years |
1.2.0 | MIT | 2 | 2016-02-17 - 22:19 | over 8 years |
1.1.0 | MIT | 2 | 2016-02-04 - 21:06 | almost 9 years |
1.0.0 | MIT | 2 | 2016-01-11 - 15:42 | almost 9 years |
0.9.3 | MIT | 2 | 2015-12-21 - 18:03 | almost 9 years |
0.9.2 | MIT | 2 | 2015-12-14 - 19:00 | almost 9 years |
0.9.1 | MIT | 2 | 2015-12-08 - 22:50 | almost 9 years |
0.9.0 | MIT | 2 | 2015-12-03 - 18:49 | almost 9 years |
0.8.0 | MIT | 2 | 2015-11-19 - 23:26 | almost 9 years |