CVE-2024-58368
HIGH
7.5
CVSS 3.1
Description
SurrealDB versions before 1.1.0 fail to properly parse the ID, DB, and NS headers in HTTP REST API requests containing special characters. Unauthenticated attackers can send crafted HTTP requests with malformed header values to trigger an uncaught exception that crashes the server.
Metadata
Severity & Metrics
7.5
HIGH CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| surrealdb | surrealdb | — | 0 < 1.1.0, 1.1.0 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-248 | cna | Uncaught Exception |
CVSS scores (2)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 8.7 | HIGH | 4.0 | cna | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
| 7.5 | HIGH | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
References (2)
- GitHub Security Advisory (GHSA-m24x-r6q3-2vp9) https://github.com/surrealdb/surrealdb/security/advisories/GHSA-m24x-r6q3-2vp9
- VulnCheck Advisory: SurrealDB before 1.1.0 Denial of Service via HTTP Headers https://www.vulncheck.com/advisories/surrealdb-before-denial-of-service-via-http-headers