Node.js 模組 axios < 1.15.1 CRLF 注入 （CVE-2026-42037）

版本 1.2

May 11, 2026, 11:42 AM

CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
Exploit attributes ("Exploit available" set to "True")
Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")