CVE-2024-39895 | Directus up to 10.11.x /graphql resource consumption

Inserito da Angelo Barbosa | Lug 8, 2024 | CVE

A vulnerability has been found in Directus up to 10.11.x and classified as critical. This vulnerability affects unknown code of the file /graphql. The manipulation leads to resource consumption.

This vulnerability was named CVE-2024-39895. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39895 | Directus up to 10.11.x /graphql resource consumption

Post correlati

CVE-2024-10525 | Eclipse Mosquitto up to 2.0.18 SUBACK Packet on_subscribe heap-based overflow (Issue 190)

CVE-2024-44550 | Tenda AX1806 1.0.0.1 formGetIptv adv.iptv.stbpvid stack-based overflow

CVE-2024-20384 | Cisco ASA/Firepower Threat Defense Software NSG authentication spoofing (cisco-sa-asaftd-nsgacl-bypass-77XnEAsL)

CVE-2023-50159 | ScaleFusion 10.5.2 Kiosk Mode access control