Known Vulnerabilities for products from Axios
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Axios".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44286 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-43995 json | Not Provided | 2026-05-11 | 2026-05-11 | |
| CVE-2026-42264 json | Not Provided | 2026-05-08 | 2026-05-08 | |
| CVE-2026-42044 json | Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.15.2, he Axios library is vulnerable... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42043 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, an attacker who can influence t... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42042 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, the Axios library's XSRF token ... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42041 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, the Axios library is vulnerable... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42040 json | Not Provided | 2026-04-24 | 2026-04-27 | |
| CVE-2026-42039 json | Not Provided | 2026-04-24 | 2026-04-24 | |
| CVE-2026-42038 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, he fix for no_proxy hostname no... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42037 json | Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.15.1, the FormDataPart constructor i... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42036 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, when responseType: 'stream' is ... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42035 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, a prototype pollution gadget ex... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42034 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, for stream request bodies, maxB... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-42033 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, when Object.prototype has been ... | Not Provided | 2026-04-24 | 2026-04-27 |
| CVE-2026-40175 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.3.1, the Axios library is vulnerable ... | Not Provided | 2026-04-10 | 2026-05-12 |
| CVE-2026-39865 json | Axios is a promise based HTTP client for the browser and Node.js. Starting in version 1.13.0 and prior to 1.13.2, Axios HTTP/... | Not Provided | 2026-04-08 | 2026-04-27 |
| CVE-2025-62718 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle... | Not Provided | 2026-04-09 | 2026-04-16 |
| CVE-2023-45857 json | An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the... | 6.5 - MEDIUM | 2023-11-08 | 2023-11-16 |
| CVE-2022-1214 json | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This CVE has been rejected as it was incorrectly assigned. All referen... | Not Provided | 2022-05-03 | 2023-11-07 |
Known software with vulnerabilities from Axios
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Axios | Axios | 0.1.0 |