[Git][security-tracker-team/security-tracker][master] Update notes for CVE-2025-27152/node-axios
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 9 08:53:01 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0d71d4f9 by Salvatore Bonaccorso at 2025-03-09T09:51:40+01:00
Update notes for CVE-2025-27152/node-axios
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -147,7 +147,7 @@ CVE-2025-27518 (Cognita is a RAG (Retrieval Augmented Generation) Framework for
CVE-2025-27152 (axios is a promise based HTTP client for the browser and node.js. The ...)
- node-axios <unfixed>
NOTE: https://github.com/axios/axios/security/advisories/GHSA-jr5f-v2jv-69x6
- NOTE: https://github.com/axios/axios/issues/6463
+ NOTE: Similar to: https://github.com/axios/axios/issues/6463 (CVE-2024-39338)
CVE-2025-26643 (No cwe for this issue in Microsoft Edge (Chromium-based) allows an una ...)
NOT-FOR-US: Microsoft
CVE-2025-26331 (Dell ThinOS 2411 and prior, contains an Improper Neutralization of Spe ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d71d4f97922e8a71627deea7acda1955a099fb1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0d71d4f97922e8a71627deea7acda1955a099fb1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250309/8d0673c4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list