Vulnerabilities > CVE-2022-33987 - Unspecified vulnerability in GOT Project GOT
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
The got package before 12.1.0 (also fixed in 11.8.5) for Node.js allows a redirect to a UNIX socket.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- https://github.com/sindresorhus/got/compare/v12.0.3...v12.1.0
- https://github.com/sindresorhus/got/compare/v12.0.3...v12.1.0
- https://github.com/sindresorhus/got/pull/2047
- https://github.com/sindresorhus/got/pull/2047
- https://github.com/sindresorhus/got/releases/tag/v11.8.5
- https://github.com/sindresorhus/got/releases/tag/v11.8.5