CVE-2021-22921 log

Severity Medium
Remote No
Type Privilege escalation
Node.js before versions 16.4.1, 14.17.2 and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically, improper configuration of permissions in the installation directory allows an attacker to perform two different escalation attacks: PATH and DLL hijacking.
Group Package Affected Fixed Severity Status Ticket
AVG-2130 nodejs 16.4.0-1 16.4.1-1 Medium Not affected