VYPR
High severityNVD Advisory· Published Aug 9, 2024· Updated Aug 15, 2024

CVE-2024-39338

CVE-2024-39338

Description

axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
axiosnpm
>= 1.3.2, < 1.7.41.7.4

Affected products

63

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.