CVE-2026-33805 | fastify reply-from/http-proxy prior 12.6.2 Header rewriteRequestHeaders Connection http headers for scripting syntax

A vulnerability was found in fastify reply-from and http-proxy and classified as critical. The affected element is the function rewriteRequestHeaders of the component Header Handler. Such manipulation of the argument Connection leads to improper neutralization of http headers for scripting syntax.

This vulnerability is traded as CVE-2026-33805. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More