CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Nodejs security advisory (AV26-624)

unknown
Serial number: AV26-624 Date: June 22, 2026 On June 18, 2026, Nodejs published security advisories to address vulnerabilities in the following products: js 22 - versions prior to v22.23.0 js 24 - versions prior to v24.17.0 js 26 - versions prior to v26.3.1 The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates Nodejs - Thursday, June 18, 2026 Security Releases Nodejs Releases

CSIRTS triage

vendor: Nodejsproduct: Nodejsaffected: js 22 - versions prior to v22.23.0, js 24 - versions prior to v24.17.0, js 26 - versions prior to v26.3.1
What
Security advisories were published to address vulnerabilities in multiple versions of Nodejs.
Who is affected
Users and administrators of affected Nodejs versions are impacted.
Urgency
Remediation is encouraged to maintain security, although exploitation status is not specified.
Action
Users should review the advisories and apply the necessary updates.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch Nodejs

Get an email when a new Nodejs advisory drops — max one per day, one-click unsubscribe.

Details

Source
Canadian Centre for Cyber Security (CA · national-cert · site)
Severity
unknown
Published
2026-06-22
Exploitation
Not in CISA KEV at last sync

Original advisory: https://cyber.gc.ca/en/alerts-advisories/nodejs-security-advisory-av26-624

More from Canadian Centre for Cyber Security