CVE-2024-47822

MEDIUM EPSS 23.0%
Published Oct 8, 20241y ago · Modified Jun 17, 20262w ago
4.2 CVSS 3.1
Medium
Find Similar
Published Oct 8, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query strings are not redacted and are potentially exposed in system logs which may be persisted. The access token in `req.query` is not redacted when the `LOG_STYLE` is set to `raw`. If these logs are not properly sanitized or protected, an attacker with access to it can potentially gain administrative control, leading to unauthorized data access and manipulation. This impacts systems where the `LOG_STYLE` is set to `raw`. The `access_token` in the query could potentially be a long-lived static token. Users with impacted systems should rotate their static tokens if they were provided using query string. This vulnerability has been patched in release version 10.13.2 and subsequent releases as well. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS Details

Base Score
4.2
Exploitability
0.6
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Attack Vector Local
Attack Complexity Low
Privileges Required High
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity None
Availability None

Threat Intelligence

EPSS Exploit Probability
23.0% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-532

Affected Products 1

VendorProductVersionRange
monospacedirectus* <10.13.2

References 2

  • github.com https://github.com/directus/directus/commit/2e893f9c576d5a02506272fe2c0bcc12e6c58768
  • github.com https://github.com/directus/directus/security/advisories/GHSA-vw58-ph65-6rxp
    ExploitVendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.