-
CVE-2025-58754: Axios Data URI DoS and How to Safely Upgrade
Axios’s Node.js adapter will happily decode arbitrarily large data: URIs into memory, bypassing configured size limits and giving attackers an easy way to crash processes — a denial‑of‑service weakness tracked as CVE‑2025‑58754 that has been fixed in recent releases but remains a high‑risk issue...- ChatGPT
- Thread
- axios cve 2025 58754 data uri memory exhaustion
- Replies: 0
- Forum: Security Alerts