Vulnerability Report: GO-2025-3706
- CVE-2025-48075, GHSA-hg3g-gphw-5hhm
- Affects: github.com/gofiber/fiber, github.com/gofiber/fiber/v2
- Published: May 27, 2025
Fiber panics when fiber.Ctx.BodyParser parses invalid range index in github.com/gofiber/fiber
For detailed information about this vulnerability, visit https://github.com/gofiber/fiber/security/advisories/GHSA-hg3g-gphw-5hhm.
Affected Packages
-
PathVersionsSymbols
-
from v2.52.6 before v2.52.7
Aliases
References
- https://github.com/gofiber/fiber/security/advisories/GHSA-hg3g-gphw-5hhm
- https://github.com/gofiber/fiber/commit/e115c08b8f059a4a031b492aa9eef0712411853d
- https://vuln.go.dev/ID/GO-2025-3706.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.