AZL-75801 — Vulnetix

AZL-75801 PUBLISHED CVSS 9.300000190734863 CRITICAL

CVE-2024-34064 affecting package nodejs24 for versions less than 24.13.0-1

Risk Scores

CVSS 4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Azure Linux:3	nodejs24	0

Exploit Intelligence

CVE-2024-34064 demo - v5 regex missing end anchor (github-poc-repo)
CVE-2024-34064 demo - v6 sanitisation applied to wrong variable (github-poc-repo)
CVE-2024-34064 demo - baseline (no sanitisation) (github-poc-repo)
CVE-2024-34064 demo - v1 genuine fix honest comments (github-poc-repo)
CVE-2024-34064 demo - v2 genuine fix bad comments (github-poc-repo)
CVE-2024-34064 demo - v3 subtle vuln no misleading comment (github-poc-repo)
CVE-2024-34064 demo - v4 subtle vuln good comment (github-poc-repo)
CVE-2024-34064 demo - v6 sanitisation applied to wrong variable (github-poc)
CVE-2024-34064 demo - v5 regex missing end anchor (github-poc)
CVE-2024-34064 demo - v2 genuine fix bad comments (github-poc)

…and 6 more exploits

Timeline

May 6, 2024 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2024-34064 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›