logo

Database

Improper resource allocation In fastify-multipart

Description

Uncontrolled Resource Consumption in fastify-multipart Prototype pollution vulnerability in fastify-multipart < 1.0.5 allows an attacker to crash fastify applications parsing multipart requests by sending a specially crafted request.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2020-81362. NVD-2020-81363. OSV-2020-81364. GCVE-2020-8136

References

1. https://hackerone.com/reports/804772

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.