CVE-2025-22870

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-22870
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22870.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-22870
Aliases
Downstream
Related
Published
2025-03-12T19:15:38Z
Modified
2025-08-09T20:01:26Z
Summary
[none]
Details

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.

References

Affected packages