USN-6158-1: Node Fetch vulnerability
13 June 2023
Node Fetch could be made to expose sensitive information if it opened a specially crafted file.
- node-fetch - A light-weight module that brings the Fetch API to Node.js
It was discovered that Node Fetch incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to obtain