Nodejs security advisory (AV26-624)
Serial number: AV26-624 Date: June 22, 2026 On June 18, 2026, Nodejs published security advisories to address vulnerabilities in the following products: js 22 - versions prior to v22.23.0 js 24 - versions prior to v24.17.0 js 26 - versions prior to v26.3.1 The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates Nodejs - Thursday, June 18, 2026 Security Releases Nodejs Releases
CSIRTS triage
- What
- Security advisories were published to address vulnerabilities in multiple versions of Nodejs.
- Who is affected
- Users and administrators of affected Nodejs versions are impacted.
- Urgency
- Remediation is encouraged to maintain security, although exploitation status is not specified.
- Action
- Users should review the advisories and apply the necessary updates.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Nodejs
Get an email when a new Nodejs advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://cyber.gc.ca/en/alerts-advisories/nodejs-security-advisory-av26-624
More from Canadian Centre for Cyber Security
- unknownBitWarden security advisory (AV26-683)2026-07-10
- criticalAL25-007 - Vulnerability impacting Roundcube Webmail – CVE-2025-49113 – Update 12026-07-10
- unknownMicrosoft Edge security advisory (AV26-682)2026-07-10
- criticalBroadcom VMware security advisory (AV26-681)2026-07-10
- unknownDjango security advisory (AV26-084) – Update 12026-07-09