This page collects WhisperX intelligence signals tagged #CVE-2025-62718. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical Server-Side Request Forgery (SSRF) vulnerability, tracked as CVE-2025-62718, is actively shipping with the latest version of the workflow automation platform n8n. The platform's version 2.15.0 bundles a vulnerable version of the popular Axios HTTP client library (v1.13.5), creating a direct path for attacker...
A critical vulnerability in the widely-used Axios HTTP client library allows attackers to bypass NO_PROXY rules and force sensitive requests through a malicious proxy. The flaw, designated CVE-2025-62718, specifically affects versions prior to 1.15.0, including the still-deployed axios-0.19.2.tgz. This bypass undermine...
A critical security update for the widely-used Axios HTTP client library patches a proxy bypass vulnerability that could allow attackers to intercept sensitive internal traffic. The flaw, tracked as CVE-2025-62718, stems from improper hostname normalization when checking `NO_PROXY` rules. Specifically, requests directe...
A critical security flaw in the widely-used Axios HTTP client library has been patched, exposing a proxy bypass vulnerability that could allow attackers to intercept sensitive internal traffic. The issue, tracked as CVE-2025-62718, stems from improper hostname normalization when checking `NO_PROXY` rules. Specifically,...
Three high-severity security vulnerabilities embedded in the Axios HTTP client library have been traced through the dependency chain of the SAP UI5 development toolchain, specifically affecting `@sap-ux/project-access`. The most critical flaw—CVE-2025-62718—bypasses NO_PROXY protections via RFC 1122 loopback subnet man...