Vulnerabilities > Fastify > Fastify
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-22 | CVE-2022-41919 | Cross-Site Request Forgery (CSRF) vulnerability in Fastify Fastify is a web framework with minimal overhead and plugin architecture. | 8.8 |
| 2022-10-10 | CVE-2022-39288 | Improper Check for Unusual or Exceptional Conditions vulnerability in Fastify fastify is a fast and low overhead web framework, for Node.js. | 7.5 |
| 2020-07-30 | CVE-2020-8192 | Resource Exhaustion vulnerability in Fastify 2.14.1/3.0.0 A denial of service vulnerability exists in Fastify v2.14.1 and v3.0.0-rc.4 that allows a malicious user to trigger resource exhaustion (when the allErrors option is used) with specially crafted schemas. | 4.0 |
| 2018-06-07 | CVE-2018-3711 | Allocation of Resources Without Limits or Throttling vulnerability in Fastify Fastify node module before 0.38.0 is vulnerable to a denial-of-service attack by sending a request with "Content-Type: application/json" and a very large payload. | 7.5 |