Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/22 8:22 p.m.19 views

CVE-2025-27098

GraphQL Mesh is a GraphQL Federation framework and gateway for both GraphQL Federation and non-GraphQL Federation subgraphs, non-GraphQL services, such as REST and gRPC, and also databases such as MongoDB, MySQL, and PostgreSQL. Missing check vulnerability in the static file handler allows any...

7.5CVSS6.8AI score0.00336EPSS
Exploits1References1
Circl
Circl
added 2025/02/20 9:17 p.m.18 views

CVE-2025-27098

creationtimestamp| type| source ---|---|--- 2025-02-20 21:17:42+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4811 2025-02-20 23:12:03+00:00| seen| https://t.me/cvedetector/18598...

7.5CVSS4.8AI score0.00336EPSS
Exploits1References2
NVD
NVD
added 2025/02/20 9:15 p.m.19 views

CVE-2025-27098

GraphQL Mesh is a GraphQL Federation framework and gateway for both GraphQL Federation and non-GraphQL Federation subgraphs, non-GraphQL services, such as REST and gRPC, and also databases such as MongoDB, MySQL, and PostgreSQL. Missing check vulnerability in the static file handler allows any...

7.5CVSS0.00336EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/20 8:13 p.m.10 views

CVE-2025-27098 Unwanted access to the entire file system vulnerability due to a missing check in `staticFiles` HTTP handler in graphql-mesh

GraphQL Mesh is a GraphQL Federation framework and gateway for both GraphQL Federation and non-GraphQL Federation subgraphs, non-GraphQL services, such as REST and gRPC, and also databases such as MongoDB, MySQL, and PostgreSQL. Missing check vulnerability in the static file handler allows any...

5.8CVSS5.7AI score0.00336EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/20 8:13 p.m.37 views

CVE-2025-27098 Unwanted access to the entire file system vulnerability due to a missing check in `staticFiles` HTTP handler in graphql-mesh

GraphQL Mesh is a GraphQL Federation framework and gateway for both GraphQL Federation and non-GraphQL Federation subgraphs, non-GraphQL services, such as REST and gRPC, and also databases such as MongoDB, MySQL, and PostgreSQL. Missing check vulnerability in the static file handler allows any...

5.8CVSS0.00336EPSS
Exploits1References1
Rows per page
Query Builder