5 matches found
CVE-2026-42041 vulnerabilities
Vulnerabilities for packages: langfuse, kubeflow-centraldashboard, nextcloud-server, lerna, prism, jitsucom-jitsu, saf, opensearch-dashboards...
CVE-2026-42041 vulnerabilities
Vulnerabilities for packages: nextcloud-server, wazuh-dashboard, kubeflow-centraldashboard, langfuse, saf, opensearch-dashboards, gitlab-rails-ce-fips, awx, prism, redisinsight, lerna, opensearch-dashboards-fips, langfuse-fips, jitsucom-jitsu, gitlab-rails-ce, kibana, wazuh-dashboard-fips...
0xpay-cc-sdk (>=0.0.8 <=0.1.0), 0xtrails (>=0.0.0-20251106131028 <=0.16.2) +7018 more potentially affected by CVE-2026-42041 via axios (>=1.0.0 <=1.15.0)
axios NPM version =1.0.0, =0.0.8, =0.0.0-20251106131028, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.0, =0.0.2-beta.0, =8.0.5, =6.1.0, =0.0.0-canary-847463221a9a1bee28641d8c0ecfaca98ee142f6, =0.0.1-alpha.3, =0.1.6-alpha.11, =0.1.6-alpha.12 and more Source cves: CVE-2026-42041 Source advisory:...
DEBIAN-CVE-2026-42041
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, the Axios library is vulnerable to a Prototype Pollution "Gadget" attack that allows any Object.prototype pollution to silently suppress all HTTP error responses 401, 403, 500, etc., causing them to be...
CVE-2026-42041
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, the Axios library is vulnerable to a Prototype Pollution "Gadget" attack that allows any Object.prototype pollution to silently suppress all HTTP error responses 401, 403, 500, etc., causing them to be...