1Mar
CVE-2024-27295 | Directus up to 10.8.2 Password Reset name resolution
A vulnerability, which was classified as critical, has been found in Directus up to 10.8.2. This issue affects some unknown processing of the component Password Reset Handler. The manipulation leads to incorrectly-resolved name. The identification of this vulnerability is CVE-2024-27295. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.