EPSS
Percentile
42.5%
node-fetch is vulnerable to denial of service. The size option after following a redirect is not adhered to, which does not result in a FetchError being thrown and the process ending without failure when a content size was over the limit.
size
FetchError
github.com/node-fetch/node-fetch/pull/925
github.com/node-fetch/node-fetch/security/advisories/GHSA-w7rc-rwvf-8q5r
www.npmjs.com/package/node-fetch