CVE-2025-53539 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

FastAPI Guard is a security library for FastAPI that provides middleware to control IPs, log requests, and detect penetration attempts. fastapi-guard's penetrat…
Medium CVSS: 6.9

CVE-2025-53539

FastAPI Guard is a security library for FastAPI that provides middleware to control IPs, log requests, and detect penetration attempts. fastapi-guard's penetration attempts detection uses regex to scan incoming requests. However, some of the regex patterns used in detection are extremely inefficient and can cause polynomial complexity backtracks when handling specially crafted inputs. This vulnerability is fixed in 3.0.1.
Vendor
Fastapi-guard
Product
Fastapi Guard
CWE
CWE-1333
Yayın Tarihi
2025-07-07 20:15:28
Güncelleme
2025-12-31 17:05:33
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-1333 Fastapi Guard MEDIUM Fastapi-guard 2025

Referanslar

https://github.com/rennf93/fastapi-guard/commit/d9d50e8130b7b434cdc1b001b8cfd03a06729f7f https://github.com/rennf93/fastapi-guard/security/advisories/GHSA-j47q-rc62-w448