2 matches found
CVE-2024-58359
SurrealDB prior to 2.1.0 contains a denial-of-service vulnerability in the sorting path when using ORDER BY rand(). Authorized clients can trigger a panic in the sorting function, crashing the server. The CVE covers SurrealDB versions before 2.1.0; exploitation details, affected versions beyond w...
CVE-2024-58359
SurrealDB versions before 2.1.0 contain a denial of service vulnerability in the sorting mechanism when using ORDER BY rand clause. Authorized clients can execute queries with ORDER BY rand to trigger a panic in the sorting function, crashing the server...