Product
nestjs nest
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-40879
CVE-2026-35515
CVE-2026-33011
CVE-2026-2293
CVE-2025-69211
CVE-2024-29409
CVE-2023-26108
< 11.1.19
Nest is a framework for building scalable Node.js server-side applications. Prior to 11.1.19, when an attacker sends many small, v
< 11.1.18
Nest is a framework for building scalable Node.js server-side applications. Prior to 11.1.18, SseStream._transform() interpolates
< 11.1.16
Nest is a framework for building scalable Node.js server-side applications. In versions 11.1.15 and below, a NestJS application us
all versions
A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middleware when Fastify path-
< 11.1.11
Nest is a framework for building scalable Node.js server-side applications. Versions prior to 11.1.11 have a Fastify URL encoding
all versions
File Upload vulnerability in nestjs nest v.10.3.2 allows a remote attacker to execute arbitrary code via the Content-Type header.
< 9.0.5
Versions of the package @nestjs/core before 9.0.5 are vulnerable to Information Exposure via the StreamableFile pipe. Exploiting t