Monospace: Security Vulnerabilities
Directus is a real-time API and App dashboard for managing SQL database content. Directus is vulnerable to Server-Side Request Forgery (SSRF) when importing a file from a remote web server (POST to `/files/import`). An attacker can bypass the security controls by performing a DNS rebinding attack and view sensitive data from internal servers or perform a local port scan. An attacker can exploit this vulnerability to access highly sensitive internal server(s) and steal sensitive information. This issue was fixed in version 9.23.0.
CVSS Score
5.0
EPSS Score
0.001
Published
2023-03-03
In Directus before 9.7.0, the default settings of CORS_ORIGIN and CORS_ENABLED are true.
CVSS Score
9.8
EPSS Score
0.009
Published
2022-12-26
Directus is a free and open-source data platform for headless content management. The Directus process can be aborted by having an authorized user update the `filename_disk` value to a folder and accessing that file through the `/assets` endpoint. This vulnerability has been patched and release v9.15.0 contains the fix. Users are advised to upgrade. Users unable to upgrade may prevent this problem by making sure no (untrusted) non-admin users have permissions to update the `filename_disk` field on `directus_files`.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-08-19
Page 5