CVE-2024-58370
SurrealDB before 1.1.0 is affected: the parser does not enforce recursion depth limits for nested SurrealQL statements (including IF, RELATE, and attribute access). This allows an attacker to submit queries with excessive nesting, potentially causing a stack overflow and server crash. Affected pr...