Lucene search

CVE-2024-34708

🗓️ 14 May 2024 15:31:39Reported by GitHub_MType

Directus API vulnerability in field visibilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	GHSA-P8V3-M643-4XQX Directus allows redacted data extraction on the API through "alias"	13 May 202419:40	–	osv
OSV	CVE-2024-34708	14 May 202415:39	–	osv
Cvelist	CVE-2024-34708 Directus allows redacted data extraction on the API through "alias"	13 May 202419:33	–	cvelist
Github Security Blog	Directus allows redacted data extraction on the API through "alias"	13 May 202419:40	–	github
Vulnrichment	CVE-2024-34708 Directus allows redacted data extraction on the API through "alias"	13 May 202419:33	–	vulnrichment
NVD	CVE-2024-34708	14 May 202415:39	–	nvd
Veracode	Sensitive Information Disclosure	14 May 202406:29	–	veracode

Nvd

Vulners

Node

monospace directusRange<10.11.0node.js

[
  {
    "vendor": "directus",
    "product": "directus",
    "versions": [
      {
        "version": "< 10.11.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/directus/directus/security/advisories/GHSA-p8v3-m643-4xqx
github	www.github.com/directus/directus/commit/e70a90c267bea695afce6545174c2b77517d617b

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 15:39Current

6.7Medium risk

Vulners AI Score6.7

CVSS34.9

EPSS0.00209

SSVC

CWE-200