-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security

Vulnerability Details

Registries

Custom Views

Weaknesses

Attack Patterns

Filters & Tools

nest.js

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0

Related CVEs Related Vendors Related Assigners Reports

1Vulnerabilities found

Assigner-Fluid Attacks

Assigner-Fluid Attacks

CVSS Score-8.2||HIGH

EPSS-Not Assigned

Published-27 Feb, 2026 | 16:15

Updated-27 Feb, 2026 | 17:16

Rejected-Not Available

Known To Be Used In Ransomware Campaigns?-Not Available

KEV Added-Not Available

KEV Action Due Date-Not Available

NestJS 11.1.13 - Lack of data validation allowing authentication/authorization bypass

A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middleware when Fastify path-normalization options are enabled. This issue affects nest.Js: 11.1.13.

Action-Not Available

Vendor-nest.js

Product-nest.js

CWE ID-CWE-863

Incorrect Authorization