Skip to main content

Improper Handling of Exceptional Conditions

CVE-2019-10742

Severity High
Score 7.5/10

Summary

Axios versions 0.19.0-beta.1 and all versions up to and including 0.18.0 allows attackers to cause a denial of service (application crash) by continuing to accepting content after maxContentLength is exceeded.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-755 - Improper Handling of Exceptional Conditions

The software does not handle or incorrectly handles an exceptional condition.

Advisory Timeline

  • Published