A vulnerability was found in Axios up to 0.31.x/1.15.x . It has been declared as critical . Affected by this issue is some unknown functionality of the component IPv6 Address Handler . The manipulation results in server-side request forgery. This vulnerability is cataloged as CVE-2026-44492 . The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.