What is CVE-2026-54283?

CVE-2026-54283 is a high-severity vulnerability in Kludex Starlette, classified under Allocation of Resources Without Limits or Throttling. CVSS score: 7.5/10. Published 2026-06-22.

How severe is CVE-2026-54283?

High severity. CVSS v3 base score is 7.5 out of 10.

Resource exhaustion in Kludex Starlette

CVE-2026-54283

Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1.3.1, request.form() accepts max_fields and max_part_size to bound resource consumption while parsing form data. These limits are enforced for multipart/form-data, but si…

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Kludex Starlette — versions >= 0.4.1, < 1.3.1

Weakness classification (CWE)

CWE-770 — Allocation of Resources Without Limits or Throttling

References

security-advisories@github.com (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2026-54283?: CVE-2026-54283 is a high-severity vulnerability in Kludex Starlette, classified under Allocation of Resources Without Limits or Throttling. CVSS score: 7.5/10. Published 2026-06-22.
How severe is CVE-2026-54283?: High severity. CVSS v3 base score is 7.5 out of 10.