CVE-2025-71395
The vulnerability CVE-2025-71395 affects SurrealDB versions before 2.2.2. A memory-exhaustion flaw occurs in the string::replace function when handling regex patterns, allowing unbounded string allocations to be produced. An authenticated attacker can craft a query that drives server memory usage...