Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-28168

Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.8%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
References
Products affected by CVE-2020-28168
  • Axios » Axios » Version: 0.19.0
    cpe:2.3:a:axios:axios:0.19.0
  • Axios » Axios » Version: 0.19.1
    cpe:2.3:a:axios:axios:0.19.1
  • Axios » Axios » Version: 0.19.2
    cpe:2.3:a:axios:axios:0.19.2
  • Axios » Axios » Version: 0.20.0
    cpe:2.3:a:axios:axios:0.20.0
  • Axios » Axios » Version: 0.21.0
    cpe:2.3:a:axios:axios:0.21.0
  • Siemens » Sinec Ins » Version: N/A
    cpe:2.3:a:siemens:sinec_ins:-
  • Siemens » Sinec Ins » Version: 1.0
    cpe:2.3:a:siemens:sinec_ins:1.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved