Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2022-0155

Published: 10/01/2022 Updated: 28/10/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 385
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Follow-redirects

Vulnerability Summary

follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

follow-redirects project follow-redirects

siemens sinec ins 1.0

siemens sinec ins

Vendor Advisories

Red Hat: Moderate: RHV Manager (ovirt-engine) [ovirt-4.5.3] bug fix and security update
Synopsis Moderate: RHV Manager (ovirt-engine) [ovirt-453] bug fix and security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic Updated ovirt-engine packages that fix several bugs and add various enhancements are n ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.4.4 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 244 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 244 GeneralAvailability release images This update provides security fixes, bug fixes, and updates container imagesRed Hat Product Security has rated ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.3.10 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 2310 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 2310 GeneralAvailability release images, which provide security updates and bug fixesRed Hat Product Security has rated this update as having a secur ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.2.11 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 2211 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 2211 General Availability release images, which provide one or more container updates and bug fixesRed Hat Product Security has rated this update as ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.4.3 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 243 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 243 General Availability release images This update provides security fixes, bug fixes, and updates the container imagesRed Hat Product Security has ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.3.8 security and container updates
Synopsis Moderate: Red Hat Advanced Cluster Management 238 security and container updates Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 238 GeneralAvailability release images, which provide security and container updatesRed Hat Product Security has rated this update as having a securit ...
Red Hat: Important: Red Hat Advanced Cluster Management 2.3.6 security updates and bug fixes
Synopsis Important: Red Hat Advanced Cluster Management 236 security updates and bug fixes Type/Severity Security Advisory: Important Topic Red Hat Advanced Cluster Management for Kubernetes 236 General Availabilityrelease images, which provide security updates and bug fixes Description Red Hat Advanced Cluster Management for Kubernete ...

ICS Advisories

Siemens SINEC INS

Github Repositories

https://github.com/mrbungle64/ioBroker.switchbot-ble

Control your SwitchBot "Bot" and monitor SwitchBot "Meter", "Contact" and "Motion" via Bluetooth (BLE)

SwitchBot (BLE) adapter for ioBroker This adapter allows you to control your SwitchBot "Bot" and to monitor SwitchBot "Meter", "Contact" and "Motion" via Bluetooth (BLE) Before you install If you are looking for Hub Plus/Mini support, this adapter is what you will need Models Supported models SwitchBot "Bot" SwitchBot "

https://github.com/noneisland/bot

ecovacs-deebotjs Library for running Ecovacs Deebot (and also some yeedi) vacuum cleaner robots Installation Information on how to install this library can be found here The minimum required version of Nodejs is 14x It is recommended to use version 14x or 16x Usage Information on how to use this library can be found here Models Fully supported models The fully sup

https://github.com/mrbungle64/ecovacs-deebot.js

A Node.js library for running Ecovacs Deebot and yeedi vacuum cleaner robots

ecovacs-deebotjs Library for running Ecovacs Deebot (and also some yeedi) vacuum cleaner robots Installation Information on how to install this library can be found here The minimum required version of Nodejs is 16x Usage Information on how to use this library can be found here Models Supported models The following models I own myself, so they are very widely suppor

https://github.com/Damatoca/Ecovascs-Deebot

Ecovacs Deebot node for Node-RED Node-RED node for running Ecovacs Deebot vacuum cleaner robots There's also initial support for some yeedi models (experimental) This node uses the ecovacs-deebotjs library Features Some noteworthy features are: Basic cleaning functions (eg auto clean, spot area, custom area etc) and various other commands (eg play sound, rese

https://github.com/mrbungle64/node-red-contrib-ecovacs-deebot

Node-RED node for running Ecovacs Deebot vacuum cleaner robots

Ecovacs Deebot node for Node-RED Node-RED node for running Ecovacs Deebot vacuum cleaner robots There's also initial support for some yeedi models (experimental) This node uses the ecovacs-deebotjs library Features Some noteworthy features are: Basic cleaning functions (eg auto clean, spot area, custom area etc) and various other commands (eg play sound, rese

https://github.com/Avaq/fp-ts-fetch

Fetch wrapper for fp-ts users

FP-TS Fetch Fetch wrapper for fp-ts users, inspired by fluture-node Important Requires Nodejs version 20 or greater, or a modern browser See the exact runtime compatibility table on MDN Design Philosophy Because this library offers yet another HTTP client, you must be wondering what sets it aside from the others Composition before configuration: Most HTTP clients offer a

https://github.com/Avaq/fetch-ts-node

Node Fetch wrapper for fp-ts users, adapted from fluture-node

Fetch-TS-Node Caution This package is no longer maintained and is vulnerable to CVE-2022-0155 Please use fp-ts-fetch Node Fetch wrapper for fp-ts users, adapted from fluture-node to work with the fetch API and fp-ts

References

CWE-359https://huntr.dev/bounties/fc524e4b-ebb6-427d-ab67-a64181020406https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdfhttps://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2022:8502https://github.com/mrbungle64/ioBroker.switchbot-blehttps://www.cisa.gov/uscert/ics/advisories/icsa-22-258-05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook