fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. A reverse proxy server built with `@fastify/reply-from` could misinterpret the incoming body by passing an header `ContentType: application/json ; charset=utf-8`. This can lead to bypass of security checks. This vulnerability has been patched in '@fastify/reply-from` version 9.6.0.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-01-08T13:55:05.071Z

Updated: 2024-08-02T22:40:34.194Z

Reserved: 2023-12-21T21:32:12.991Z

Link: CVE-2023-51701

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-08T14:15:46.677

Modified: 2024-11-21T08:38:38.310

Link: CVE-2023-51701

cve-icon Redhat

No data.