GitHub_MCVELIST:CVE-2023-25576CVE-2023-25576 @fastify/multipart vulnerable to DoS due to unlimited number of parts
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
61.3%
@fastify/multipart is a Fastify plugin to parse the multipart content-type. Prior to versions 7.4.1 and 6.0.1, @fastify/multipart may experience denial of service due to a number of situations in which an unlimited number of parts are accepted. This includes the multipart body parser accepting an unlimited number of file parts, the multipart body parser accepting an unlimited number of field parts, and the multipart body parser accepting an unlimited number of empty parts as field parts. This is fixed in v7.4.1 (for Fastify v4.x) and v6.0.1 (for Fastify v3.x). There are no known workarounds.
CNA Affected
[
{
"vendor": "fastify",
"product": "fastify-multipart",
"versions": [
{
"version": "< 6.0.1",
"status": "affected"
},
{
"version": ">= 7.0.0, < 7.4.1",
"status": "affected"
}
]
}
]References
github.com/fastify/fastify-multipart/commit/85be81bedf5b29cfd9fe3efc30fb5a17173c1297
github.com/fastify/fastify-multipart/releases/tag/v6.0.1
github.com/fastify/fastify-multipart/releases/tag/v7.4.1
github.com/fastify/fastify-multipart/security/advisories/GHSA-hpp2-2cr5-pf6g
hackerone.com/reports/1816195
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
61.3%