Skip to main content

Fastify Multipart

2 CVEs product

Monthly

CVE-2023-25576 npm HIGH PATCH This Week

@fastify/multipart is a Fastify plugin to parse the multipart content-type. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Fastify Multipart
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2020-8136 npm HIGH POC PATCH This Week

Prototype pollution vulnerability in fastify-multipart < 1.0.5 allows an attacker to crash fastify applications parsing multipart requests by sending a specially crafted request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Fastify Multipart
NVD
CVSS 3.1
7.5
EPSS
1.5%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

@fastify/multipart is a Fastify plugin to parse the multipart content-type. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Fastify Multipart
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Prototype pollution vulnerability in fastify-multipart < 1.0.5 allows an attacker to crash fastify applications parsing multipart requests by sending a specially crafted request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Fastify Multipart
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy