CVE-2023-51701

2024-01-0814:15:46

Google

osv.dev

fastify

plugin

misinterpret

header

security bypass

vulnerability

patched

version 9.6.0

@fastify/reply-from

reverse proxy server

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.0005 Low

EPSS

Percentile

18.0%

JSON

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0.

CPENameOperatorVersion
fastify-reply-fromeq8.0.0
fastify-reply-fromeq3.1.0
fastify-reply-fromeq3.3.0
fastify-reply-fromeq5.2.0
fastify-reply-fromeq9.0.0
fastify-reply-fromeq0.5.3
fastify-reply-fromeq6.0.0
fastify-reply-fromeq8.3.1
fastify-reply-fromeq8.4.0
fastify-reply-fromeq0.6.0

Name	Operator	Version
fastify-reply-from	eq	8.0.0
fastify-reply-from	eq	3.1.0
fastify-reply-from	eq	3.3.0
fastify-reply-from	eq	5.2.0
fastify-reply-from	eq	9.0.0
fastify-reply-from	eq	0.5.3
fastify-reply-from	eq	6.0.0
fastify-reply-from	eq	8.3.1
fastify-reply-from	eq	8.4.0
fastify-reply-from	eq	0.6.0