Description

An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests.

Remediation

References

https://github.com/directus/api/issues/982

Related Vulnerabilities

CVE-2021-21422 Vulnerability in npm package mongo-express

CVE-2023-29527 Vulnerability in maven package org.xwiki.platform:xwiki-platform-appwithinminutes-ui

CVE-2023-31133 Vulnerability in npm package ghost

CVE-2021-25945 Vulnerability in npm package js-extend

CVE-2019-10757 Vulnerability in npm package knex

Severity

High

Classification

CWE-400 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Exploit Patch