CVE-2022-2596

2022-08-0115:15:09

Debian Security Bug Tracker

security-tracker.debian.org

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.1%

JSON

Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10.

OSVersionArchitecturePackageVersionFilename
Debian12allnode-fetch< 3.3.0+~cs11.4.11-2node-fetch_3.3.0+~cs11.4.11-2_all.deb
Debian11allnode-fetch< 2.6.1-5+deb11u1node-fetch_2.6.1-5+deb11u1_all.deb
Debian10allnode-fetch< 1.7.3-1node-fetch_1.7.3-1_all.deb
Debian999allnode-fetch< 3.3.2+~cs11.4.11-3node-fetch_3.3.2+~cs11.4.11-3_all.deb
Debian13allnode-fetch< 3.3.2+~cs11.4.11-3node-fetch_3.3.2+~cs11.4.11-3_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	node-fetch	< 3.3.0+~cs11.4.11-2	node-fetch_3.3.0+~cs11.4.11-2_all.deb
Debian	11	all	node-fetch	< 2.6.1-5+deb11u1	node-fetch_2.6.1-5+deb11u1_all.deb
Debian	10	all	node-fetch	< 1.7.3-1	node-fetch_1.7.3-1_all.deb
Debian	999	all	node-fetch	< 3.3.2+~cs11.4.11-3	node-fetch_3.3.2+~cs11.4.11-3_all.deb
Debian	13	all	node-fetch	< 3.3.2+~cs11.4.11-3	node-fetch_3.3.2+~cs11.4.11-3_all.deb