CVE-2024-39338
7.5HIGHaxios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.
Опубликовано: 8/12/2024Обновлено: 8/23/2024
Описание
axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.
ИИ-АнализНа базе ИИ
Затронутые продукты
axiosaxios
Ссылки
- https://github.com/axios/axios/releasesRelease Notes
- https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.htmlExploitThird Party Advisory