CVE-2026-7768
@fastify/accepts-serializer Vulnerable to Denial of Service via Unbounded Accept Header Cache Growth
描述
### Impact `@fastify/accepts-serializer` cached serializer-selection results keyed by the request `Accept` header without a size limit or eviction policy. A remote unauthenticated client could send many distinct but matching `Accept` header variants to make the cache grow unbounded. Under sustained load, this can exhaust the Node.js heap and crash the process. ### Patches Update to `@fastify/accepts-serializer >= 6.0.4`. The cache is now bounded by an LRU with a default size of 100 entries, configurable via the new `cacheSize` plugin option. ### Workarounds None. Upgrade is required.
如何修補 CVE-2026-7768
要修補 CVE-2026-7768,請將受影響套件升級到下列已修補版本。
- —升級至 6.0.4 或更新版本
CVE-2026-7768 正在被利用嗎?
低 — EPSS 為 0.0%,目前沒有觀察到大規模利用活動。
受影響套件(1)
- from 0, < 6.0.4
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |