Skip to content

[HIGH] Axios: Incomplete Fix for CVE-2025-62718 — NO_PROXY Protection Bypassed via RFC 1122 Loopback Subnet (127.0.0.0/8) in Axios 1.15.0 #824

Open
Open
[HIGH] Axios: Incomplete Fix for CVE-2025-62718 — NO_PROXY Protection Bypassed via RFC 1122 Loopback Subnet (127.0.0.0/8) in Axios 1.15.0#824
Labels
dependabot-security-findingneeds-triagePriority and effort undetermined yetpriority/p0Needs to be addressed immediately
@cdk8s-automation

Description

@cdk8s-automation
cdk8s-automation
opened on May 8, 2026

Github reported a new dependabot security alert at: https://github.com/cdk8s-team/cdk8s-examples/security/dependabot/78

Metadata

Metadata

Assignees

No one assigned

    Labels

    dependabot-security-findingneeds-triagePriority and effort undetermined yetpriority/p0Needs to be addressed immediately

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions