fastify fastify-multipart Vulnerabilities: CVEs, CISA KEV & Security Advisories

Severity and exploitation

How the CVSS severity of fastify fastify-multipart's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High3

Medium0

Low0

1 additional CVE has no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

None of fastify fastify-multipart's CVEs are currently listed in CISA's KEV catalog.

Public exploits

One of fastify fastify-multipart's CVEs has a known public exploit available.

Affected versions and CVEs

Browse every fastify fastify-multipart version named in a CVE, then pick one to see only the CVEs that affect it.

Find a version

4 CVEs

Sort

@fastify/multipart vulnerable to unlimited consumption of resources
CVE-2025-24033
Public exploit
Patch
CWE-770
High · CVSS 7.5
EPSS 0.3% (51th pct)2025-01-23
High vulnerability · 2023-02-14
CVE-2023-25576
Patch
CWE-770
High · CVSS 7.5
EPSS 0.6% (70th pct)2023-02-14
High vulnerability · 2022-02-11
CVE-2021-23597
Patch
High · CVSS 7.5
EPSS 0.4% (61th pct)2022-02-11
Vulnerability · 2020-03-20
CVE-2020-8136
Patch
CWE-400
Unscored
EPSS 0.8% (74th pct)2020-03-20

Severity and exploitation