CVE-2022-0155

MEDIUM

follow-redirects - Info Disclosure

Title source: llm

Description

follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor

Exploits (1)

nomisec WORKING POC
by coana-tech · poc
https://github.com/coana-tech/CVE-2022-0155-PoC

References (3)

Scores

CVSS v3 6.5
EPSS 0.0130
EPSS Percentile 79.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE
CWE-359
Status published
Products (4)
follow-redirects_project/follow-redirects < 1.14.7
npm/follow-redirects 0 - 1.14.7npm
siemens/sinec_ins 1.0 (2 CPE variants)
siemens/sinec_ins < 1.0
Published Jan 10, 2022
Tracked Since Feb 18, 2026