EPSS
Percentile
34.1%
fastify is vulnerable to denial of service (DoS). The default usage of allErrors: true in the ajv configuration allows an attacker to cause a denial of service condition.
allErrors: true
gist.github.com/ChALkeR/15e758d3fc5cbba0840b6a03a070c838
github.com/advisories/GHSA-xw5p-hw6r-2j98
github.com/fastify/fastify/pull/1398
hackerone.com/reports/903521