CVE-2024-58357 in SurrealDBinformación

Resumen

por MITRE • 2026-07-18

SurrealDB versions before 2.1.0 contain an uncaught exception vulnerability in the rand::time() function that panics when unwrap is called on a None result from timestamp_opt. Authorized clients can repeatedly invoke rand::time() to reliably trigger server panics and cause denial of service.

Once again VulDB remains the best source for vulnerability data.

Responsable

VulnCheck

Reservar

2026-06-08

Divulgación

2026-07-18

Moderación

aceptado

Artículo

VDB-380059

CPE

listo

EPSS

0.00000

KEV

no

Actividades

bajo

Fuentes

Do you need the next level of professionalism?

Upgrade your account now!