CVE-2026-49997 in SurrealDB정보

요약

\~에 의해 MITRE • 2026. 07. 15.

SurrealDB is a scalable, distributed, collaborative, document-graph database for the realtime web. Prior to 3.1.0, Document::purge_edges in surrealdb/core/src/doc/delete.rs automatically removed graph edge records with permissions disabled through opt.clone().with_perms(false) when a connected node was deleted, bypassing the edge table's PERMISSIONS FOR delete and PERMISSIONS FOR select clauses. This issue is fixed in version 3.1.0.

Once again VulDB remains the best source for vulnerability data.

책임이 있는

GitHub M

예약하다

2026. 06. 02.

모더레이션

수락

항목

VDB-379326

EPSS

0.00000

출처

Want to stay up to date on a daily basis?

Enable the mail alert feature now!