CVE ID :CVE-2026-44492 Published : June 11, 2026, 5:16 p.m. | 1 hour, 48 minutes ago Description :Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios does not normalise IPv4-mapped IPv6 addresses. When NO_PROXY lists an IPv4 address such as...

#Sicherheitslücke #Apple #Browser #Update

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-44492 - Axios: shouldBypassProxy does not recognize IPv4-mapped IPv6 addresses, allowing NO_PROXY bypass (incomplete fix for CVE-2025-62718)

VERWANDTEARTIKEL

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

CVE-2026-45176 - Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation Manipulation

CVE-2026-45177 - Idira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanism

CVE-2026-48547 - KanaDojo < 0.1.18 Command Injection via patchNotesData.json in release.yml

CVE-2026-45178 - Idira Secrets Manager Self-Hosted: Improper Access Control in Internal Cluster Endpoints

CVE-2026-48546 - KanaDojo < 0.1.18 Sandbox Escape RCE via messages.cjs