Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2022-0155 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2022-0155

CVE-2022-0155

HIGH8.0

Exposure of Private Personal Information to an Unauthorized Actor in follow-redirects/follow-redirects

Published Jan 10, 2022

Modified 1 years ago

Details

follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor

References

WEBhttps://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf WEBhttps://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22 WEBhttps://huntr.dev/bounties/fc524e4b-ebb6-427d-ab67-a64181020406 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2022-0155

CVSS Analysis

CVSS v3.1

6.5

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

NoneA:N

6.5/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedJan 10, 2022

ModifiedAug 2, 2024