Package impact
npm / @fastify/middie
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-33804 | critical | 9.1 | 9.1 | 1mo ago | @fastify/middie vulnerable to middleware bypass via deprecated ignoreDuplicateSlashes option | |||
| CVE-2026-6270 | critical | 9.1 | 9.1 | 1mo ago | @fastify/middie vulnerable to middleware authentication bypass in child plugin scopes | |||
| CVE-2026-2880 | critical | 9.1 | 9.1 | 3mo ago | @fastify/middie has Improper Path Normalization when Using Path-Scoped Middleware |