Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
fastify 0.15.0 | Vulnerabilities | Sonatype Guide
npm
fastify
0.15.0
fastify 0.15.0
Published
Apr 9, 2017
•
Policy
compliance
npm Registry
Developer Trust Score
N/A
Recommended Version:
x.y.z
Latest version with 0 known vulnerabilities that meets your policy.
Compare Versions
Overview
Overview
Versions
314
Versions
314
Vulnerabilities
5
Vulnerabilities
5
Dependencies
11
Dependencies
11
Reset filters
Severity
Critical
(0)
High
(0)
Medium
(0)
Low
(1)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
3.7
CVE-2026-25224
Fastify is a fast and low overhead web framework, for Node.js. Prior to version 5.7.3, a denial-of-service vulnerability in Fastify’s Web Streams response handling can allow a remote client to exhaust server memory. Applications that return a ReadableStream (or Response with a Web Stream body) via reply.send() are impacted. A slow or non-reading client can trigger unbounded buffering when backpressure is ignored, leading to process crashes or severe degradation. This issue has been patched in version 5.7.3.
affected
Severity
Low
Published
Feb 3, 2026
