View all vulnerabilities

CVE-2023-49559

Denial of service vulnerability via the parseDirectives function in github.com/vektah/gqlparser

An issue in vektah gqlparser open-source-library allows a remote attacker to cause a denial of service via a crafted script to the parseDirectives function.

Patch Available

Fix available through Seal Security. No upgrade required, protect your application instantly.

Fix without upgrading
Vulnerability Details
Score
Score Vector
Affected Versions
github.com/vektah/gqlparser/v2 < 2.5.14
Severity
Ecosystem
GO
Publish Date
July 1, 2024
Modified Date
July 15, 2024