Home
Home
Trends
Trends
Vulnerabilities
Vulnerabilities
News
News
Researchers
Researchers
Why dbugs?
Why dbugs?
Settings

Akkie

#31408of 54,864
8.5Total CVSS
Vulnerabilities · 1
PT-2026-60946
8.5
2026-07-18
Surrealdb · Surrealdb · CVE-2024-58366
**Name of the Vulnerable Software and Affected Versions** SurrealDB versions prior to 1.1.1 **Description** A format string issue exists in the `Exception::throw type()` function of rquickjs, the Rust binding to the QuickJS engine, when scripting is enabled. Attackers with scripting privileges can provide format string sequences in error inputs to read arbitrary process memory or execute code with the privileges of the SurrealDB process. **Recommendations** Update to version 1.1.1 or later.