VYPR
Medium severity5.3NVD Advisory· Published Jun 18, 2022· Updated Jun 17, 2026

CVE-2022-33987

CVE-2022-33987

Description

The got package before 12.1.0 (also fixed in 11.8.5) for Node.js allows a redirect to a UNIX socket.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
gotnpm
>= 12.0.0, < 12.1.012.1.0
gotnpm
< 11.8.511.8.5

Affected products

19

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.