Описание
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
A flaw was found in fastify-reply-from. This vulnerability allows an attacker to bypass intended route restrictions and gain unauthorized access to specific application routes, potentially exposing sensitive information or functionality, via crafting a malicious Uniform Resource Locator (URL).
Отчет
This vulnerability is rated Moderate for Red Hat because it allows an attacker to bypass intended route restrictions in applications utilizing the fastify-reply-from plugin by crafting a malicious URL. This could lead to unauthorized access to specific application routes, potentially exposing sensitive information or functionality.
Меры по смягчению последствий
To mitigate the risk associated with this vulnerability, Red Hat recommends restricting network access to applications utilizing fastify-reply-from to trusted networks only. Additionally, ensure that any routes intended to be inaccessible via forwarding have robust, independent access control mechanisms in place, separate from the fastify-reply-from plugin's internal logic. If the fastify-reply-from functionality is not essential, consider disabling or removing the plugin to eliminate the attack surface.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift AI (RHOAI) | rhoai/odh-dashboard-rhel8 | Fix deferred | ||
| Red Hat OpenShift AI (RHOAI) | rhoai/odh-dashboard-rhel9 | Fix deferred | ||
| Red Hat OpenShift AI (RHOAI) | rhoai/odh-mod-arch-gen-ai-rhel9 | Fix deferred | ||
| Red Hat OpenShift AI (RHOAI) | rhoai/odh-mod-arch-model-registry-rhel9 | Fix deferred | ||
| Red Hat OpenShift Dev Spaces | devspaces/dashboard-rhel9 | Fix deferred |
Показывать по
Дополнительная информация
Статус:
6.5 Medium
CVSS3
Связанные уязвимости
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
6.5 Medium
CVSS3