Joselcvarela

Name of the Vulnerable Software and Affected Versions: Directus versions prior to 10.13.3 Directus versions prior to 11.1.0 Description: An unauthenticated user can access the credentials of the last authenticated user via OpenID or OAuth2 when the authentication URL does not include a `redirect` query string. This issue occurs because the `respond` middleware in Directus caches GET requests under certain conditions, which does not include this specific scenario where an unauthenticated request returns user credentials. The estimated number of potentially affected devices is not specified. Recommendations: For versions prior to 10.13.3, update to version 10.13.3 or later to resolve the issue. For versions prior to 11.1.0, update to version 11.1.0 or later to resolve the issue. As a temporary workaround, consider disabling the cache functionality until a patch is available. Restrict access to the authentication endpoints, such as `https://directus.example.com/auth/login/openid/callback`, to minimize the risk of exploitation.