Lucene search
PRIOn knowledge basePRION:CVE-2023-51701HistoryJan 08, 2024 - 2:15 p.m.
Security feature bypass
2024-01-0814:15:00
PRIOn knowledge base
www.prio-n.com
5
fastify
plugin
security checks
misinterpretation
request body
vulnerability
patch
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0.
| CPE | Name | Operator | Version |
|---|---|---|---|
| reply-from | lt | 9.6.0 |
Related
cvelist
cvelist
CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion
2024-01-08 13:55:05
veracode
veracode
Request Smuggling
2024-01-09 07:04:36
osv
osv
CVE-2023-51701
2024-01-08 14:15:46
@fastify/reply-from JSON Content-Type parsing confusion
2024-01-08 15:22:40
github
github
@fastify/reply-from JSON Content-Type parsing confusion
2024-01-08 15:22:40
cve
cve
CVE-2023-51701
2024-01-08 14:15:46
nvd
nvd
CVE-2023-51701
2024-01-08 14:15:46