MultipartParser DOS with too many fields or files in Starlette Framework

Go back

severity: high
date: April 20, 2023
Affecting: Python module starlette versions lessage than 0.25.0. It is patched in 0.25.0.
CVE: CVE-2023-30798
CVE type: Uncontrolled Resource Consumption
CVSS: 7.5
CVSS V3 Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References: GHSA-74m5-2c7w-9w3x
fix commit