Vulnerability Name:

CVE-2018-7166 (CCN-148425)

Assigned:2018-08-16
Published:2018-08-16
Updated:2020-09-22
Summary:In all versions of Node.js 10 prior to 10.9.0, an argument processing flaw can cause `Buffer.alloc()` to return uninitialized memory. This method is intended to be safe and only return initialized, or cleared, memory. The third argument specifying `encoding` can be passed as a number, this is misinterpreted by `Buffer's` internal "fill" method as the `start` to a fill operation. This flaw may be abused where `Buffer.alloc()` arguments are derived from user input to return uncleared memory blocks that may contain sensitive information.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-908
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2018-7166

Source: CCN
Type: IBM Security Bulletin 729005 (Business Automation Workflow)
Security vulnerabilities in IBM SDK for Node.js might affect the configuration editor used by IBM Business Automation Workflow and Business Process Manager (BPM)

Source: CCN
Type: IBM Security Bulletin 0738875 (Cloud Private)
Multiple Security Vulnerabilities affect IBM Cloud Private (CVE-2018-0732, CVE-2018-12115, CVE-2018-7166, CVE-2018-0737)

Source: CCN
Type: IBM Security Bulletin 738991 (QRadar SIEM)
Node.js as used in IBM QRadar Packet Capture is susceptible to multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 2012749 (SDK for Node.js for Bluemix)
Multiple vulnerabilities affect IBM SDK for Node.js in IBM Cloud

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:2553

Source: XF
Type: UNKNOWN
nodejs-cve20187166-info-disc(148425)

Source: CCN
Type: Node.js Blog, 2018-08-11
August 2018 Security Releases

Source: CONFIRM
Type: Vendor Advisory
https://nodejs.org/en/blog/vulnerability/august-2018-security-releases/

Source: CCN
Type: IBM Security Bulletin 730325 (i)
Vulnerabilities CVE-2018-12115 and CVE-2018-7166 in Node.js affect IBM i

Source: CCN
Type: IBM Security Bulletin 732459 (API Connect)
IBM API Connect is affected by OpenSSL vulnerabilities (CVE-2018-0732 CVE-2018-12115 CVE-2018-7166 CVE-2018-0737)

Source: CCN
Type: IBM Security Bulletin 0735003 (Cloud App Management)
Multiple vulnerabilities were identified in Node.js that affect IBM Cloud App Management V2018

Source: CCN
Type: IBM Security Bulletin 0740011 (Planning Analytics Local)
IBM Planning Analytics Local is affected by multiple Node.js vulnerabilities

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-7166

Vulnerable Configuration:Configuration 1:
  • cpe:/a:nodejs:node.js:*:*:*:*:*:*:*:* (Version >= 10.0.0 and < 10.9.0)

    • Configuration CCN 1:
  • cpe:/a:nodejs:node.js:10:*:*:*:*:*:*:*
  • AND
  • cpe:/o:ibm:i:7.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:planning_analytics_local:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:18.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201606:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201609:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201612:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201703:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:CF201706:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.5.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6.0:CF201712:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6.0:CF201803:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:8.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:2.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sdk:6.14.3:*:node.js:*:bluemix:*:*:*
  • OR cpe:/a:ibm:sdk:8.11.3:*:node.js:*:bluemix:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:18.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:api_connect:5.0.8.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:3.1.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20187166
    V
    		CVE-2018-7166
    2022-09-02
    oval:org.opensuse.security:def:94259
    P
    		 (Important)
    2022-07-12
    oval:org.opensuse.security:def:1681
    P
    		Security update for qemu (Important) (in QA)
    2022-06-13
    oval:org.opensuse.security:def:1094
    P
    		Security update for libqt5-qtbase (Important)
    2022-03-15
    oval:org.opensuse.security:def:1689
    P
    		Security update for python-Twisted (Important)
    2022-02-18
    oval:org.opensuse.security:def:71348
    P
    		mozilla-nspr-32bit-4.20-3.3.2 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:66928
    P
    		Security update for grafana-piechart-panel (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:64761
    P
    		Security update for java-11-openjdk (Important)
    2021-09-03
    oval:org.opensuse.security:def:70284
    P
    		Security update for mariadb (Moderate)
    2021-08-25
    oval:org.opensuse.security:def:48316
    P
    		sysconfig-0.84.0-13.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47615
    P
    		gdk-pixbuf-lang-2.34.0-19.17.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47944
    P
    		alsa-1.0.27.2-15.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47616
    P
    		gdk-pixbuf-loader-rsvg-2.40.20-5.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48076
    P
    		libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47630
    P
    		groff-1.22.2-5.287 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48168
    P
    		libpcap1-1.8.1-10.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47751
    P
    		libnm-glib-vpn1-1.0.12-13.6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:100972
    P
    		libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:68008
    P
    		Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP1) (Important)
    2021-07-14
    oval:org.opensuse.security:def:66836
    P
    		Security update for gupnp (Important)
    2021-06-18
    oval:org.opensuse.security:def:48741
    P
    		libproxy1-networkmanager-32bit-0.4.11-11.6 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48530
    P
    		libopenssl-devel-1.0.2j-55.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48772
    P
    		gcc48-gij-32bit-4.8.5-30.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48614
    P
    		res-signingkeys-3.0.18-26.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48843
    P
    		imobiledevice-tools-1.2.0-7.31 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48676
    P
    		gnome-shell-calendar-3.10.4-22.13 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:73619
    P
    		Security update for dtc (Low)
    2021-05-13
    oval:org.opensuse.security:def:64674
    P
    		Security update for python3 (Moderate)
    2021-03-24
    oval:org.opensuse.security:def:68108
    P
    		Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)
    2021-03-17
    oval:org.opensuse.security:def:103743
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63400
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107638
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63408
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:117196
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2311
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:90088
    P
    		nodejs10-10.15.2-1.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71461
    P
    		cpp7-7.5.0+r278197-4.16.2 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2319
    P
    		nodejs10-10.19.0-1.18.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:50068
    P
    		libecpg6 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73501
    P
    		glibc-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50122
    P
    		nodejs10 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50076
    P
    		libsaml-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70179
    P
    		log4j12-javadoc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:50130
    P
    		nodejs10 on GA media (Moderate)
    2020-12-01
    oval:com.ubuntu.bionic:def:20187166000
    V
    		CVE-2018-7166 on Ubuntu 18.04 LTS (bionic) - low.
    2018-08-21
    oval:com.ubuntu.xenial:def:201871660000000
    V
    		CVE-2018-7166 on Ubuntu 16.04 LTS (xenial) - low.
    2018-08-21
    oval:com.ubuntu.trusty:def:20187166000
    V
    		CVE-2018-7166 on Ubuntu 14.04 LTS (trusty) - low.
    2018-08-21
    oval:com.ubuntu.xenial:def:20187166000
    V
    		CVE-2018-7166 on Ubuntu 16.04 LTS (xenial) - low.
    2018-08-21
    oval:com.ubuntu.bionic:def:201871660000000
    V
    		CVE-2018-7166 on Ubuntu 18.04 LTS (bionic) - low.
    2018-08-21
    BACK
    nodejs node.js *
    nodejs node.js 10
    ibm i 7.1
    ibm i 7.2
    ibm i 7.3
    ibm api connect 5.0.0.0
    ibm planning analytics local 2.0
    ibm business automation workflow 18.0.0.0
    ibm qradar security information and event manager 7.2
    ibm qradar security information and event manager 7.3
    ibm business automation workflow 8.5.5
    ibm business automation workflow 8.5.6
    ibm business automation workflow 8.5.6.1
    ibm business automation workflow 8.5.6.2
    ibm business automation workflow 8.5.7 CF201606
    ibm business automation workflow 8.5.7 CF201609
    ibm business automation workflow 8.5.7 CF201612
    ibm business automation workflow 8.5.7 CF201703
    ibm business automation workflow 8.5.7 CF201706
    ibm business automation workflow 8.5.7
    ibm business automation workflow 8.6.0 CF201712
    ibm business automation workflow 8.6.0 CF201803
    ibm business automation workflow 8.6
    ibm cloud private 2.1.0
    ibm sdk 6.14.3
    ibm sdk 8.11.3
    ibm business automation workflow 18.0.0.1
    ibm api connect 5.0.8.4
    ibm cloud private 3.1.0