Опубликовано: 16 янв. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5.8
CVSS3: 6.1
Описание
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 2.6.7+~2.6.1-1 |
| esm-apps/bionic | released | 1.7.3-1ubuntu0.1~esm1 |
| esm-apps/focal | released | 1.7.3-2ubuntu0.1 |
| esm-apps/jammy | not-affected | 2.6.7+~2.5.12-1 |
| focal | released | 1.7.3-2ubuntu0.1 |
| impish | ignored | end of life |
| jammy | not-affected | 2.6.7+~2.5.12-1 |
| kinetic | not-affected | 2.6.7+~2.6.1-1 |
| lunar | not-affected | 2.6.7+~2.6.1-1 |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 65%
0.00512
Низкий
5.8 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.1
redhat
больше 3 лет назад
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
CVSS3: 6.1
nvd
больше 3 лет назад
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
CVSS3: 6.1
debian
больше 3 лет назад
node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...
CVSS3: 8.8
github
больше 3 лет назад
node-fetch forwards secure headers to untrusted sites
EPSS
Процентиль: 65%
0.00512
Низкий
5.8 Medium
CVSS2
6.1 Medium
CVSS3