Lucene search
Veracode Vulnerability DatabaseVERACODE:37539HistoryOct 13, 2022 - 3:38 a.m.
Denial Of Service (DoS)
2022-10-1303:38:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
fastify
vulnerability
denial of service
contenttypeparser.js
content-type header
crash
application
malicious content type
0.002 Low
EPSS
Percentile
53.4%
fastify is vulnerable to denial of service. The vulnerability exists because the ContentTypeParser function in contentTypeParser.js does not properly validate the Content-Type header, allowing an attacker to crash the application by providing a malicious content type.
References
Related
cve
cve
CVE-2022-39288
2022-10-10 21:15:11
prion
prion
Design/Logic Flaw
2022-10-10 21:15:00
osv
osv
fastify vulnerable to denial of service via malicious Content-Type
2022-10-11 13:45:14
CVE-2022-39288
2022-10-10 21:15:11
cnvd
cnvd
Fastify Denial of Service Vulnerability
2022-10-12 00:00:00
github
github
fastify vulnerable to denial of service via malicious Content-Type
2022-10-11 13:45:14
nvd
nvd
CVE-2022-39288
2022-10-10 21:15:11
hackerone
hackerone
Fastify: Deny of service via malicious Content-Type
2022-09-28 14:43:13
cvelist
cvelist
CVE-2022-39288 Denial of service in Fastify via Content-Type header
2022-10-10 00:00:00