A high-severity security flaw has been discovered in Axios, one of the most popular HTTP client libraries used in the JavaScript ecosystem. The vulnerability, tracked as CVE-2026-25639, allows remote attackers to trigger a Denial-of-Service (DoS) condition, effectively crashing Node.js servers with a single malicious request. The flaw lies in Axios’s mergeConfig function, which combines different configuration objects. […] The post Axios Vulnerability Let Attackers Triggers DoS Condition and Crash Node.js Servers appeared first on Cyber Security News.