Fastify-static
This hub aggregates every CVE we track for Fastify-static, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Fastify-static.
- CVE-2026-6410@fastify/static vulnerable to path traversal in directory listing5.3
- CVE-2026-6414@fastify/static vulnerable to route guard bypass via encoded path separators5.9
- CVE-2021-22963A redirect vulnerability in the fastify-static module version < 4.2.4 allows remote attackers to redirect users to arbitrary websites via a double slash // followed by a domain: http://localhost:30...6.1
- CVE-2021-22964A redirect vulnerability in the `fastify-static` module version >= 4.2.4 and < 4.4.1 allows remote attackers to redirect Mozilla Firefox users to arbitrary websites via a double slash `//` followed...8.8
Product normalization is registry-driven with AI assist and human review. How it works