Vulnerability Details CVE-2022-0235
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.0%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 5.8
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
- https://github.com/node-fetch/node-fetch/commit/36e47e8a6406185921e4985dcbeff140d73eaa10
- https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7
- https://lists.debian.org/debian-lts-announce/2022/12/msg00007.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
- https://github.com/node-fetch/node-fetch/commit/36e47e8a6406185921e4985dcbeff140d73eaa10
- https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7
- https://lists.debian.org/debian-lts-announce/2022/12/msg00007.html
Products affected by CVE-2022-0235
-
cpe:2.3:a:node-fetch_project:node-fetch:0.1.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.3
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.4
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.5
-
cpe:2.3:a:node-fetch_project:node-fetch:1.0.6
-
cpe:2.3:a:node-fetch_project:node-fetch:1.1.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.1.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.1.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.2.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.2.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.3.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.3.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.3.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.3.3
-
cpe:2.3:a:node-fetch_project:node-fetch:1.4.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.4.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.5.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.5.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.5.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.5.3
-
cpe:2.3:a:node-fetch_project:node-fetch:1.6.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.6.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.6.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.6.3
-
cpe:2.3:a:node-fetch_project:node-fetch:1.7.0
-
cpe:2.3:a:node-fetch_project:node-fetch:1.7.1
-
cpe:2.3:a:node-fetch_project:node-fetch:1.7.2
-
cpe:2.3:a:node-fetch_project:node-fetch:1.7.3
-
cpe:2.3:a:node-fetch_project:node-fetch:2.0.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.1.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.1.1
-
cpe:2.3:a:node-fetch_project:node-fetch:2.1.2
-
cpe:2.3:a:node-fetch_project:node-fetch:2.2.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.2.1
-
cpe:2.3:a:node-fetch_project:node-fetch:2.3.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.4.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.4.1
-
cpe:2.3:a:node-fetch_project:node-fetch:2.5.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.0
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.1
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.2
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.4
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.5
-
cpe:2.3:a:node-fetch_project:node-fetch:2.6.6
-
cpe:2.3:a:node-fetch_project:node-fetch:3.0.0
-
cpe:2.3:a:node-fetch_project:node-fetch:3.1.0
-
cpe:2.3:a:siemens:sinec_ins:-
-
cpe:2.3:a:siemens:sinec_ins:1.0
-
cpe:2.3:o:debian:debian_linux:10.0