Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Fastapi-guardFastapi Guard

3 matches found

CVE
CVEadded 2025/05/06 2:55 p.m.53 views

CVE-2025-46814

CVE-2025-46814 affects the FastAPI Guard library (pre-2.0.0) and describes an HTTP header injection via the X-Forwarded-For header. The underlying issue allows an attacker to inject arbitrary IP addresses into requests, potentially bypassing IP-based access controls, misleading logs, and imperson...

7.5CVSS4.3AI score0.00234EPSS
CVE
CVEadded 2025/07/23 10:11 p.m.26 views

CVE-2025-54365

CVE-2025-54365 concerns the Python package fastapi-guard (3.0.1) where a patched regular-expression length limit fails to catch inputs that bypasses the regex filtering (notably for [removed] attributes), enabling potential ReDoS/back-end resource strain and degraded availability. Multiple connec...

8.8CVSS6.2AI score0.00447EPSS
CVE
CVEadded 2025/07/07 7:16 p.m.16 views

CVE-2025-53539

CVE-2025-53539 affects fastapi-guard: the DoS risk stems from inefficient regular expressions in the SusPatternsManager (suspatterns_handler.py) used to detect penetration attempts, enabling polynomial backtracking under crafted inputs. The vulnerability is documented as fixed in version 3.0.1; r...

7.5CVSS6.5AI score0.00472EPSS