CVE-2017-11499

EPSS 0.38% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-11499

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Joyent Node.js 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Joyent Node.js是美国Joyent公司的一套建立在Google V8 JavaScript引擎之上的网络应用平台。该平台主要用于构建高度可伸缩的应用程序，以及编写能够处理数万条且同时连接到一个物理机的连接代码。 Joyent Node.js中存在输入验证漏洞。攻击者可利用该漏洞造成拒绝服务。以下版本受到影响：Node.js 4.0版本至4.8.3版本，5.x版本，6.0版本至6.11.0版本，7.0版本至7.10.0版本，8.0版本至8.1.3版本。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2017-11499

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-11499

请登录查看更多情报信息。

https://nodejs.org/en/blog/vulnerability/july-2017-security-releases/x_refsource_CONFIRM
http://www.securityfocus.com/bid/99959vdb-entryx_refsource_BID
https://access.redhat.com/errata/RHSA-2017:2908vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3002vendor-advisoryx_refsource_REDHAT
https://nvd.nist.gov/vuln/detail/CVE-2017-11499

Same Patch Batch · n/a · 2017-07-25 · 54 CVEs total

CVE-2017-9413		Subsonic 跨站请求伪造漏洞
CVE-2017-11627		QPDF 安全漏洞
CVE-2016-6133		Ektron Content Management System 跨站脚本漏洞
CVE-2017-11625		QPDF 安全漏洞
CVE-2017-11624		QPDF 安全漏洞
CVE-2017-9233		libexpat 安全漏洞
CVE-2017-11626		QPDF 安全漏洞
CVE-2017-6746		Cisco Web Security Appliance AsyncOS Software 安全漏洞
CVE-2017-6672		Cisco ASR 5000 Series Aggregation Services路由器安全漏洞
CVE-2017-6612		Cisco ASR 5000 Series Aggregation Services路由器安全漏洞
CVE-2017-6748		Cisco Web Security Appliance CLI解析器安全漏洞
CVE-2017-8919		NetApp OnCommand API Services 安全漏洞
CVE-2017-11460		SAP NetWeaver Portal 跨站脚本漏洞
CVE-2017-11459		SAP TREX 代码注入漏洞
CVE-2017-11458		SAP NetWeaver AS JAVA 跨站脚本安全漏洞
CVE-2017-11457		SAP NetWeaver AS JAVA 安全漏洞
CVE-2017-11434		QEMU 安全漏洞
CVE-2016-10401		ZyXEL PK5001Z设备安全漏洞
CVE-2015-8013		OpenPGP.js 加密问题漏洞
CVE-2015-6585		Hancom Hangul Word Processor 缓冲区错误漏洞

Showing top 20 of 54 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2017-11499

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-11499

I. Basic Information for CVE-2017-11499

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-11499

III. Intelligence Information for CVE-2017-11499

Same Patch Batch · n/a · 2017-07-25 · 54 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-11499

Leave a comment