Lucene search
K

39 matches found

Veracode
Veracode
added 2024/01/09 7:4 a.m.15 views

Request Smuggling

fastify-reply-from is vulnerable to Request Smuggling. The vulnerability is due to the absence of a unified Content-Type parsing, unlike the majority of Fastify that uses fast-content-type-parse with trimming after split. This issue can be exploited by an attacker to bypass security checks,...

7.5CVSS6.8AI score0.00479EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/01/08 3:22 p.m.21 views

@fastify/reply-from JSON Content-Type parsing confusion

Impact The main repo of fastify use fast-content-type-parse to parse request Content-Type, which will trim after split. The fastify-reply-from have not use this repo to unify the parse of Content-Type, which won't trim. As a result, a reverse proxy server built with @fastify/reply-from could...

7.5CVSS7.1AI score0.00479EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2024/01/08 1:55 p.m.45 views

CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...

5.3CVSS7.7AI score0.00479EPSS
Exploits0References2
CVE
CVE
added 2024/01/08 1:55 p.m.41 views

CVE-2023-51701

CVE-2023-51701 affects fastify-reply-from, a Fastify plugin. The vulnerability arises when the plugin misinterprets the request body due to a Content-Type handling discrepancy (Content-Type header like application/json ; charset=utf-8), allowing bypass of security checks. References in multiple s...

7.5CVSS7.4AI score0.00479EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/08 1:55 p.m.8 views

CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...

5.3CVSS7.5AI score0.00479EPSS
Exploits0References2
OSV
OSV
added 2024/01/08 1:55 p.m.26 views

CVE-2023-51701 @fastify-reply-from JSON Content-Type parsing confusion

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with @fastify/reply-from could misinterpret the incoming body by passing an header ContentType: application/json ; charset=utf-8. This can lead to bypass of security checks...

5.3CVSS7.4AI score0.00479EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.7 views

Fastify Environmental Vulnerabilities

Fastify is an open source web framework for Node.js from the OpenJS Foundation. A security vulnerability exists in Fastify fastify-reply-from versions prior to 9.6.0, which stems from the fact that passing body text via header using fastify/reply-from may be misinterpreted, leading to bypassing...

7.5CVSS6.8AI score0.00479EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/04/13 4:30 a.m.112 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.2.2 security and bug fix update

Red Hat Advanced Cluster Management for Kubernetes 2.2.2 General Availability release images, which fix several bugs and security issues. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

10CVSS6.5AI score0.50732EPSS
Exploits7References15
RedhatCVE
RedhatCVE
added 2021/03/23 8:37 p.m.32 views

CVE-2021-21321

A flaw was found in fastify-reply-from. Escaping of the prefix of the proxied backend service is possible allowing an attacker, using a specially crafted URL, to gain access to directories that would otherwise be out of bounds. The highest threat from this vulnerability is to data confidentiality...

10CVSS3.2AI score0.01821EPSS
Exploits0References4
Veracode
Veracode
added 2021/03/03 6:0 a.m.14 views

Authorization Bypass

fastify-reply-from is vulnerable to authorization bypass. An attacker is able to escape the prefix of the proxied backend service and access restricted service such as the parent of the base URL...

10CVSS3.7AI score0.01821EPSS
Exploits0References4Affected Software1
Node.js
Node.js
added 2021/03/03 1:55 a.m.34 views

Prefix escape

Overview In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is...

7.5CVSS9.3AI score0.01821EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2021/03/03 1:52 a.m.58 views

Prefix escape

Impact By crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N...

10CVSS0.6AI score0.01821EPSS
Exploits0References5Affected Software1
vulnersOsv
vulnersOsv
added 2021/03/03 1:52 a.m.7 views

@ddot/ddot-plugin-webpack (>=0.0.3 <=0.0.14), @harmonyjs/controller-auth-jwt (>=1.0.0 <=1.0.0-rc2.6) +15 more potentially affected by CVE-2021-21321 via fastify-reply-from (>=0.1.0 <=3.5.0)

fastify-reply-from NPM version =0.1.0, =0.0.3, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.0.0-alpha.2, =1.0.1, =0.1.0, =0.1.0, =2.0.0, =0.2.0, =0.0.1, =0.0.6 and more Source cves: CVE-2021-21321 Source advisory: OSV:GHSA-QMW8-3V4G-GWJ4...

10CVSS7.2AI score0.01821EPSS
Exploits0
OSV
OSV
added 2021/03/03 1:52 a.m.18 views

GHSA-QMW8-3V4G-GWJ4 Prefix escape

Impact By crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is /pub/, a user expect that accessing /priv on the target service would not be possible. Unfortunately, it is. CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N...

10CVSS9.4AI score0.01821EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/03/02 4:15 a.m.1 views

CVE-2021-21321

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...

10CVSS5.5AI score0.01821EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2021/03/02 4:15 a.m.13 views

Design/Logic Flaw

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...

7.5CVSS9.1AI score0.01821EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/03/02 3:35 a.m.48 views

CVE-2021-21321 Prefix escape

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server i...

10CVSS9.4AI score0.01821EPSS
Exploits0References3
CVE
CVE
added 2021/03/02 3:35 a.m.143 views

CVE-2021-21321

The CVE affects the npm package fastify-reply-from (a Fastify plugin used to forward requests to a backend). In versions prior to 4.0.2, a crafted URL could escape the proxied backend’s prefix (for example base URL /pub/), allowing access to resources that should be out of scope. Impact is data c...

10CVSS9.2AI score0.01821EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/03/01 12:0 a.m.4 views

fastify-reply-from 存在输入验证错误漏洞

Matteo Collina fastify-reply-from is Matteo Collina an open source application . It is used to forward the current http request to another server. A security vulnerability exists in fastify-reply-from before version 4.0.2, which can be exploited to escape the prefix of a proxy backend service by...

10CVSS8.3AI score0.01821EPSS
Exploits0References8
Rows per page
Query Builder