Home
Home
Trends
Trends
Vulnerabilities
Vulnerabilities
News
News
Researchers
Researchers
Why dbugs?
Why dbugs?
Settings

Extrawurst

#40021of 54,872
7.1Total CVSS
Vulnerabilities · 1
PT-2026-60940
7.1
2024-11-22
Surrealdb · Surrealdb · CVE-2024-58359
**Name of the Vulnerable Software and Affected Versions** SurrealDB versions prior to 2.1.0 **Description** A denial of service issue exists in the sorting mechanism. Authorized clients can trigger a panic in the sorting function by executing queries that utilize the `ORDER BY rand()` clause, which results in a server crash. **Recommendations** Update to version 2.1.0 or later. As a temporary workaround, avoid using the `ORDER BY rand()` clause in queries.