Multer · Multer · CVE-2025-47944
Name of the Vulnerable Software and Affected Versions:
Multer versions 1.4.4-lts.1 through 1.4.4-lts.x and versions prior to 2.0.0
Description:
A Denial of Service (DoS) issue is present, allowing an attacker to trigger a crash of the process by sending a malformed multi-part upload request, causing an unhandled exception. This issue affects the handling of `multipart/form-data`.
Recommendations:
For versions 1.4.4-lts.1 through 1.4.4-lts.x and versions prior to 2.0.0, upgrade to version 2.0.0 to receive a patch.
At the moment, there is no information about other workarounds for this issue.