Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Tenable Nessus
Tenable Nessusadded 2026/04/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-42034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, for stream request bodies, maxBodyLength is bypassed when...

5.3CVSS5.9AI score0.00327EPSS
Exploits1References4
CVE
CVEadded 2026/04/24 5:59 p.m.19 views

CVE-2026-42034

CVE-2026-42034 affects Axios, a promise-based HTTP client for browser and Node.js. The vulnerability occurs in the HTTP adapter for stream request bodies: for versions prior to 1.15.1 and 0.31.1, maxBodyLength is bypassed when maxRedirects is set to 0 on the native http/https transport path, caus...

5.3CVSS5.3AI score0.00327EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/24 5:59 p.m.6 views

CVE-2026-42034 Axios: HTTP adapter streamed uploads bypass maxBodyLength when maxRedirects: 0

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, for stream request bodies, maxBodyLength is bypassed when maxRedirects is set to 0 native http/https transport path. Oversized streamed uploads are sent fully even when the caller sets strict body limits...

5.3CVSS5.2AI score0.00327EPSS
Exploits1References1
Rows per page
Query Builder