CNNVD-202602-211 Information

CNNVD ID

CNNVD-202602-211

Related CVE

CVE-2026-25224

• CNNVD Published: 2026-02-03

Description (Chinese)

Fastify是Fastify开源的一个 Web 框架。 Fastify 5.7.3之前版本存在安全漏洞，该漏洞源于Web Streams响应处理存在拒绝服务漏洞，可能导致远程客户端耗尽服务器内存。

Description (English)

Fastify is an open-source Web framework for Fastify. There was a security loophole in the previous version of Fasty 5.7.3, which stemmed from the denial service gap in Web Teams response processing, which could lead to the depletion of server memory by a remote client.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

fastify

Published

2026-02-03

Last Modified

2026-02-24

References

https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37 https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c https://hackerone.com/reports/3524779

Patch

https://github.com/fastify/fastify/releases