Security Alert - Package: follow-redirects; Severity: HIGH #802

phenggeler · 2022-01-25T18:32:31Z

    Affected package: follow-redirects
    Ecosystem: NPM
    Affected version range: < 1.14.7

    Summary: Exposure of sensitive information in follow-redirects
    Description: follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor
    identifiers: [{'type': 'GHSA', 'value': 'GHSA-74fj-2j2h-c42q'}, {'type': 'CVE', 'value': 'CVE-2022-0155'}]

    Fixed Version: 1.14.7
    Created Date = January 25, 2022

    

    ---

The text was updated successfully, but these errors were encountered:

phenggeler · 2022-01-25T19:27:05Z

@phenggeler - label applied: Due this month.

phenggeler added Severity: HIGH Subject: Security Subject: Vulnerability labels Jan 25, 2022

phenggeler self-assigned this Jan 25, 2022

phenggeler added the Due this month. label Jan 25, 2022

phenggeler assigned Catacola Jan 25, 2022

phenggeler removed Subject: Security Subject: Vulnerability Severity: HIGH Due this month. labels Feb 7, 2022

phenggeler unassigned Catacola and phenggeler Feb 7, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security Alert - Package: follow-redirects; Severity: HIGH #802

Security Alert - Package: follow-redirects; Severity: HIGH #802

phenggeler commented Jan 25, 2022 •

edited

Loading

phenggeler commented Jan 25, 2022

Security Alert - Package: follow-redirects; Severity: HIGH #802

Security Alert - Package: follow-redirects; Severity: HIGH #802

Comments

phenggeler commented Jan 25, 2022 • edited Loading

phenggeler commented Jan 25, 2022

phenggeler commented Jan 25, 2022 •

edited

Loading