Ghostwire

CVE-2024-58369: SurrealDB versions before 1.1.1 fail to properly validate invocation of custom parameters and functions at root or...

HIGH CVSS 0.0

Published: July 18, 2026 | Last Modified: July 18, 2026

Description

SurrealDB versions before 1.1.1 fail to properly validate invocation of custom parameters and functions at root or namespace levels, causing server panic. Authorized clients can invoke these entities at unsupported levels to crash the SurrealDB server, resulting in denial of service.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (1 articles)

References