node-fetchproject node-fetch CVE-2022-0235 vulnerability in Node Fetchproject and Other Products
Published on January 16, 2022

Exposure of Sensitive Information to an Unauthorized Actor in node-fetch/node-fetch

product logo product logo product logo
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor

NVD

Weakness Type

What is an Information Disclosure Vulnerability?

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

CVE-2022-0235 has been classified to as an Information Disclosure vulnerability or weakness.


Products Associated with CVE-2022-0235

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-0235 are published in these products:

Node Fetchproject Node Fetch
 
Siemens Sinec Ins
 
Debian Linux
 

Affected Versions

node-fetch/node-fetch:

Exploit Probability

EPSS
0.65%
Percentile
70.46%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.