A vulnerability, which was classified as critical, has been found in Directus up to 10.8.2. This issue affects some unknown processing of the component Password Reset Handler. The manipulation leads to incorrectly-resolved name.
The identification of this vulnerability is CVE-2024-27295. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.