CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion

2024-01-0813:55:05

CWE-444

GitHub_M

www.cve.org

fastify-reply-from

json content-type parsing

security vulnerability

patch

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.0005 Low

EPSS

Percentile

18.0%

JSON

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0.

CNA Affected

[
  {
    "vendor": "fastify",
    "product": "fastify-reply-from",
    "versions": [
      {
        "version": "< 9.6.0",
        "status": "affected"
      }
    ]
  }
]