JavaScript is a high-level, interpreted programming language essential for creating interactive web applications, running directly in web browsers to enable dynamic content and user interface enhancements. It is integral to the web development stack, working seamlessly with HTML and CSS to build responsive and feature-rich websites.

JavaScript

Debian GNU/Linux is a Linux distribution composed of free and open-source software.

Linux Debian

Echo is a secure, minimal Linux OS built vulnerability-free. It is fully compatible across environments and continuously patched - making it a clean, dependable base layer for modern applications. Echo is used by organizations focused on security and reliability, including those with compliance or FIPS requirements.

Echo

Undici is an HTTP/1.1 client for Node.js. Prior to 7.18.0 and 6.23.0, the number of links in the decompression chain is unbounded and the default maxHeaderSize allows a malicious server to insert thousands compression steps leading to high CPU usage and excessive memory allocation. This vulnerability is fixed in 7.18.0 and 6.23.0.

CVE ID	Gravidade	Pontuação	Tecnologias	Nome do componente	Exploração do CISA KEV	Tem correção	Data de publicação
CVE-2026-22787	HIGH	8.7	JavaScript	html2pdf.js	Não	Sim	Jan 14, 2026
CVE-2026-22820	MEDIUM	6.3	JavaScript	outray	Não	Sim	Jan 14, 2026
CVE-2026-22819	MEDIUM	5.9	JavaScript	outray	Não	Sim	Jan 14, 2026
CVE-2026-22036	LOW	3.7	JavaScript	node-undici	Não	Sim	Jan 14, 2026
GHSA-73rr-hh4g-fpgx	LOW	N/A	JavaScript	diff	Não	Sim	Jan 14, 2026

CVE-2026-22036:
JavaScript Análise e mitigação de vulnerabilidades

3.7

Relacionado JavaScript Vulnerabilidades:

Compare sua postura de segurança na nuvem

Recursos adicionais da Wiz

PEACH

Pronto para ver a Wiz em ação?

CVE-2026-22036: JavaScript Análise e mitigação de vulnerabilidades