CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-2293

A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middleware when Fastify path-normalization options are enabled. This issue affects nest.Js: 11.1.13.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://fluidattacks.com/advisories/neton
https://github.com/nestjs/nest/
https://github.com/nestjs/nest/releases/tag/v11.1.14

Products affected by CVE-2026-2293

Nestjs » Nest » Version: 11.1.13

cpe:2.3:a:nestjs:nest:11.1.13

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-2293

Products

Pricing

Contact Us