CyberRota
← Ana sayfaya dön

CVE-2026-48617

LOW · CVSS 1.8 EPSS %0.21

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-18T17:16:31.460 · Çekilme zamanı: 2026-06-30T12:26:29.804270+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-48617
Severity
LOW
CVSS
1.8
EPSS
%0.21

Orijinal NVD Açıklaması

A flaw in Node.js Permission Model enforcement allows Bypass via `process.report.writeReport()` Path Misvalidation. This can lead to confidentiality impact or bypass of the intended security boundary under affected configurations. This vulnerability affects all supported release lines: **Node.js 22**, **Node.js 24**, and **Node.js 26**.