Vulnerability Details CVE-2025-53539
FastAPI Guard is a security library for FastAPI that provides middleware to control IPs, log requests, and detect penetration attempts. fastapi-guard's penetration attempts detection uses regex to scan incoming requests. However, some of the regex patterns used in detection are extremely inefficient and can cause polynomial complexity backtracks when handling specially crafted inputs. This vulnerability is fixed in 3.0.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.5%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2025-53539
-
cpe:2.3:a:fastapi-guard:fastapi_guard:-
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.1.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.2.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.3.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.3.1
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.3.2
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.3.3
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.3.4
-
cpe:2.3:a:fastapi-guard:fastapi_guard:0.4.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.0.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.1.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.2.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.2.1
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.2.2
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.3.2
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.4.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:1.5.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.0.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.0.1
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.1.0
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.1.1
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.1.2
-
cpe:2.3:a:fastapi-guard:fastapi_guard:2.1.3
-
cpe:2.3:a:fastapi-guard:fastapi_guard:3.0.0