Vulnerabilities > Node Fetch Project

DATE CVE VULNERABILITY TITLE RISK
2022-08-01 CVE-2022-2596 Unspecified vulnerability in Node-Fetch Project Node-Fetch
Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10.
network
high complexity
node-fetch-project
5.9
2022-01-16 CVE-2022-0235 Information Exposure vulnerability in multiple products
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
network
low complexity
node-fetch-project siemens debian CWE-200
6.1
2020-09-10 CVE-2020-15168 Allocation of Resources Without Limits or Throttling vulnerability in Node-Fetch Project Node-Fetch
node-fetch before versions 2.6.1 and 3.0.0-beta.9 did not honor the size option after following a redirect, which means that when a content size was over the limit, a FetchError would never get thrown and the process would end without failure.
network
low complexity
node-fetch-project CWE-770
5.3