DeepSurface Security Advisory: LPEs in Node.js on Windows (CVE-2021-22921)
Node.js is a popular back-end JavaScript runtime environment built on the V8 engine. As part of our internal security research, we discovered numerous products in production environments installed with insecure permissions. One of these products was Node.js, and we decided to investigate further.