Описание
Exposure of sensitive information in follow-redirects
follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-0155
- https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22
- https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
- https://github.com/follow-redirects/follow-redirects
- https://huntr.dev/bounties/fc524e4b-ebb6-427d-ab67-a64181020406
Пакеты
Наименование
follow-redirects
npm
Затронутые версииВерсия исправления
< 1.14.7
1.14.7
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 3 лет назад
follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
CVSS3: 6.5
redhat
больше 3 лет назад
follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
CVSS3: 6.5
nvd
больше 3 лет назад
follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
CVSS3: 6.5
debian
больше 3 лет назад
follow-redirects is vulnerable to Exposure of Private Personal Informa ...
CVSS3: 8
fstec
больше 3 лет назад
Уязвимость модуля Node.js follow-redirects, связанная с ошибками обработки файлов cookie, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации