CNNVD-202601-3049 Information

CNNVD ID

CNNVD-202601-3049

Related CVE

CVE-2026-22031

• CNNVD Published: 2026-01-19

Description (Chinese)

@fastify/middie是Fastify开源的一个中间件引擎。 @fastify/middie 9.1.0之前版本存在安全漏洞，该漏洞源于路径前缀匹配不当，可能导致中间件绕过。

Description (English)

@fastify/middie is an intermediate engine for Fastify’s open source. @fastify/middie 9.1.0 has a security loophole, which stems from inappropriate prefix matching, which may lead to intermediate bypass.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

fastify

Published

2026-01-19

Last Modified

2026-02-24

References

https://github.com/fastify/middie/commit/d44cd56eb724490babf7b452fdbbdd37ea2effba https://github.com/fastify/middie/pull/245 https://github.com/fastify/middie/releases/tag/v9.1.0 https://github.com/fastify/middie/security/advisories/GHSA-cxrg-g7r8-w69p

Patch

https://github.com/fastify/middie/releases