GoogleOSV:GHSA-HPP2-2CR5-PF6GDenial of service due to unlimited number of parts
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.1%
Impact
- The multipart body parser accepts an unlimited number of file parts.
- The multipart body parser accepts an unlimited number of field parts.
- The multipart body parser accepts an unlimited number of empty parts as field
parts.
Patches
This is fixed in v7.4.1 (for Fastify v4.x) and v6.0.1 (for Fastify v3.x).
Workarounds
There are no known workaround.
References
Reported at https://hackerone.com/reports/1816195.
| CPE | Name | Operator | Version |
|---|---|---|---|
| @fastify/multipart | ge | 7.0.0 | |
| @fastify/multipart | lt | 6.0.1 | |
| @fastify/multipart | lt | 7.4.1 |
References
github.com/fastify/fastify-multipart
github.com/fastify/fastify-multipart/commit/85be81bedf5b29cfd9fe3efc30fb5a17173c1297
github.com/fastify/fastify-multipart/releases/tag/v6.0.1
github.com/fastify/fastify-multipart/releases/tag/v7.4.1
github.com/fastify/fastify-multipart/security/advisories/GHSA-hpp2-2cr5-pf6g
hackerone.com/reports/1816195
nvd.nist.gov/vuln/detail/CVE-2023-25576
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.1%