CVE-2024-58368 - SurrealDB before 1.1.0 Denial of Service via HTTP Headers
CVE ID :CVE-2024-58368
Published : July 18, 2026, 2:17 p.m. | 2 hours, 31 minutes ago
Description :SurrealDB versions before 1.1.0 fail to properly parse the ID, DB, and NS headers in HTTP REST API requests containing special characters. Unauthenticated attackers can send crafted HTTP requests with malformed header values to trigger an uncaught exception that crashes the server.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : July 18, 2026, 2:17 p.m. | 2 hours, 31 minutes ago
Description :SurrealDB versions before 1.1.0 fail to properly parse the ID, DB, and NS headers in HTTP REST API requests containing special characters. Unauthenticated attackers can send crafted HTTP requests with malformed header values to trigger an uncaught exception that crashes the server.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...