| Release | Version |
|---|---|
| bullseye | 2.88.1-5 |
| bookworm | 2.88.1-6 |
| Bug | bullseye | bookworm | Description |
|---|---|---|---|
| CVE-2023-28155 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... |
| Bug | Description |
|---|---|
| CVE-2017-16026 | Request is an http client. If a request is made using ```multipart```, ... |