Main Vulnerability Database Exploits ID:12385 - Exploit for Improper Check for Unusual or Exceptional Conditions in axios - CVE-2026-25639

ID:12385 - Exploit for Improper Check for Unusual or Exceptional Conditions in axios - CVE-2026-25639

Published: February 9, 2026

Vulnerability identifier: #VU122452

Vulnerability risk: Medium

CVE-ID: CVE-2026-25639

CWE-ID: CWE-754

Exploitation vector: Remote access

Vulnerable software:
axios

Link to public exploit:

https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433/#poc

Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within proto Key in mergeConfig. A remote attacker can send specially crafted data to the application and perform a denial of service (DoS) attack.

Remediation

Install updates from vendor's website.

ID:12385 - Exploit for Improper Check for Unusual or Exceptional Conditions in axios - CVE-2026-25639

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human