{"source":1088709,"name":"cross-fetch","dependency":"cross-fetch","title":"Incorrect Authorization in cross-fetch","url":"https://github.com/advisories/GHSA-7gc6-qh9x-w6h8","severity":"moderate","versions":["0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","1.0.0","1.1.0","1.1.1","2.0.0","2.1.0","2.1.1","2.2.0","2.2.1","2.2.2","2.2.3","2.2.4","2.2.5","2.2.6","3.0.0","3.0.1","3.0.2","3.0.3","3.0.4","3.0.5","3.0.6","3.1.0","3.1.1","3.1.2","3.1.3-alpha.4","3.1.3-alpha.5","3.1.3-alpha.6","3.1.3","3.1.4-alpha.0","3.1.4","3.1.5","3.1.6","3.1.7-test.0","3.1.7","3.1.8","3.2.0-alpha.0","3.2.0-alpha.1","3.2.0-alpha.2","3.2.0","4.0.0-alpha.4","4.0.0-alpha.5","4.0.0-alpha.10","4.0.0-alpha.13","4.0.0","4.1.0"],"vulnerableVersions":["0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","1.0.0","1.1.0","1.1.1","2.0.0","2.1.0","2.1.1","2.2.0","2.2.1","2.2.2","2.2.3","2.2.4","2.2.5"],"cwe":["CWE-359","CWE-863"],"cvss":{"score":6.1,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},"range":"<2.2.6","id":"nlsIN+bwsHxHjCN9dZArubegGO9SQumlJLRSH9U+qctwuZbGL0sSPDv9LoIDRl40q8bVxEzzBdDtrtIyan6uJw=="}