@fastify/websocket@6.0.1 vulnerabilities

basic websocket support for fastify

latest version

11.0.1
latest non vulnerable version

11.0.1
first published

3 years ago
latest version published

a month ago
licenses detected
- MIT
  >=0
View @fastify/websocket package health on Snyk Advisor Open this link in a new tab

Known vulnerabilities in the @fastify/websocket package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Denial of Service (DoS) @fastify/websocket is a basic websocket support for fastify Affected versions of this package are vulnerable to Denial of Service (DoS) in the `fastifyWebsocket` function, due to the application crashing on an uncaught exception when processing a malformed packet. How to fix Denial of Service (DoS)? Upgrade `@fastify/websocket` to version 5.0.1, 7.1.1 or higher.	>=5.0.0 <5.0.1 >=6.0.0 <7.1.1