Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-14181 |
|
Vulnerability in dos (CVE-2026-14181)
vulnerability in dos (CVE-2026-14181). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14198 |
|
Vulnerability in fastify (CVE-2026-14198)
vulnerability in fastify (CVE-2026-14198). Confidential information can be exposed externally.
|
| CVE-2026-6556 |
|
Vulnerability in express (CVE-2026-6556)
vulnerability in express (CVE-2026-6556). Confidential information can be exposed externally.
|
| CVE-2026-7768 |
|
Vulnerability in @fastify/accepts-serializer (CVE-2026-7768)
vulnerability in @fastify/accepts-serializer (CVE-2026-7768). Risk of unauthorized operations or information disclosure. Exploitable via ``Accept``. Mitigation: upgrade to `6.0.4` or later.
|
| CVE-2026-33804 |
|
Vulnerability in fastify (CVE-2026-33804)
vulnerability in fastify (CVE-2026-33804). Confidential information can be exposed externally.
|
| CVE-2026-6270 |
|
Vulnerability in fastify (CVE-2026-6270)
vulnerability in fastify (CVE-2026-6270). Confidential information can be exposed externally.
|
| CVE-2026-33805 |
|
Vulnerability in @fastify/reply-from (CVE-2026-33805)
vulnerability in @fastify/reply-from (CVE-2026-33805). Data can be tampered with by attackers. Exploitable via ``Connection``. Mitigation: upgrade to `12.6.2` or later.
|
| CVE-2026-33807 |
|
Vulnerability in express (CVE-2026-33807)
vulnerability in express (CVE-2026-33807). Confidential information can be exposed externally.
|
| CVE-2026-33808 |
|
Vulnerability in @fastify/express (CVE-2026-33808)
vulnerability in @fastify/express (CVE-2026-33808). Confidential information can be exposed externally. Exploitable via `GET //admin/dashboard`. Mitigation: upgrade to `4.0.3` or later.
|
| CVE-2026-33806 |
|
Vulnerability in fastify (CVE-2026-33806)
vulnerability in fastify (CVE-2026-33806). Data can be tampered with by attackers.
|
| CVE-2026-2880 |
|
Vulnerability in fastify (CVE-2026-2880)
vulnerability in fastify (CVE-2026-2880). Confidential information can be exposed externally.
|
| CVE-2026-25223 |
|
Vulnerability in fastify (CVE-2026-25223)
vulnerability in fastify (CVE-2026-25223). Data can be tampered with by attackers.
|
| CVE-2026-22031 |
|
Vulnerability in fastify (CVE-2026-22031)
vulnerability in fastify (CVE-2026-22031). Confidential information can be exposed externally.
|