CVE-2022-0155

Vulnerable Component Details
Type Namespace Name Version Package URL
npm None follow-redirects 1.14.4 pkg:npm/follow-redirects@1.14.4
Vulnerability Details
ID CVE-2022-0155
Description follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
Recommendation . || State: fixed | Fix Versions: 1.14.7. || Upgrade to version 1.14.7 or above.
Ratings
Severity Score Method Vector Source
4.3 CVSSv2 AV:N/AC:M/Au:N/C:P/I:N/A:N
6.5 CVSSv3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Related Vulnerabilities
Found By Gitlab Gemnasium , Anchore Grype , Sonotype OSS-Index
References / Advisories
Weakness Enumeration