Fastify - Fastify CVE

Filtered by vendor Fastify Subscribe

Filtered by product Fastify

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-8192	1 Fastify	1 Fastify	2020-08-06	4.0 MEDIUM	6.5 MEDIUM
A denial of service vulnerability exists in Fastify v2.14.1 and v3.0.0-rc.4 that allows a malicious user to trigger resource exhaustion (when the allErrors option is used) with specially crafted schemas.
CVE-2018-3711	1 Fastify	1 Fastify	2019-10-09	5.0 MEDIUM	7.5 HIGH
Fastify node module before 0.38.0 is vulnerable to a denial-of-service attack by sending a request with "Content-Type: application/json" and a very large payload.

Vulnerabilities (CVE)