• caglararli@hotmail.com
  • 05386281520

CVE-2024-27295 | Directus up to 10.8.2 Password Reset name resolution

Çağlar Arlı      -    24 Views

CVE-2024-27295 | Directus up to 10.8.2 Password Reset name resolution

A vulnerability, which was classified as critical, has been found in Directus up to 10.8.2. This issue affects some unknown processing of the component Password Reset Handler. The manipulation leads to incorrectly-resolved name. The identification of this vulnerability is CVE-2024-27295. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.