CVE-2025-47944

Name of the Vulnerable Software and Affected Versions: Multer versions 1.4.4-lts.1 through 1.4.4-lts.x and versions prior to 2.0.0

Description: A Denial of Service (DoS) issue is present, allowing an attacker to trigger a crash of the process by sending a malformed multi-part upload request, causing an unhandled exception. This issue affects the handling of multipart/form-data.

Recommendations: For versions 1.4.4-lts.1 through 1.4.4-lts.x and versions prior to 2.0.0, upgrade to version 2.0.0 to receive a patch. At the moment, there is no information about other workarounds for this issue.