CYBERHAWK / CVE / CVE-2025-62718

CVE-2025-62718

Axios HTTP client

CRITICAL CVSS 9.9 vibe

The flaw

Hostname normalization bypass allows proxy evasion via localhost with trailing dot

What to do

Update to 1.15.0+ or 0.31.0+

▸ Scan my repo for CVE-2025-62718

References

NVD CISA KEV OSV GitHub Advisory MITRE News search

In the news

Polymarket denies data breach claims by hacker Xorcat | brief | SC MediaSC Media · 2026-04-30
The prediction market platform Polymarket is suspected of a data breach, with over 300,000 records and an exploit toolkit leakedWEEX · 2026-04-29
Did Polymarket Get Hacked? Dark Web Thinks SoBeInCrypto · 2026-04-29

First seen 2026-04-15 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits