icon

We found results for “

CVE-2022-2596

Good to know:

icon
icon

Date: August 1, 2022

Inefficient Regular Expression Complexity in GitHub repository node-fetch/node-fetch prior to 3.2.10. After conducting further research, Mend has determined that CVE-2022-2596 only affects environments with versions 3.0.0 and before 3.2.10 of node-fetch.

Language: JS

Severity Score

Severity Score

Weakness Type (CWE)

Uncontrolled Resource Consumption

CWE-400

Inefficient Regular Expression Complexity

CWE-1333

Top Fix

icon

Upgrade Version

Upgrade to version node-fetch - 3.2.10

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH

Do you need more information?

Contact Us