Nblumhardt

**Name of the Vulnerable Software and Affected Versions** Datalust Seq versions prior to 2024.3.13545 **Description** An issue was discovered that allows stack consumption when parsing user-supplied queries containing deeply nested expressions due to an insecure default parsing depth limit. **Recommendations** For versions prior to 2024.3.13545, consider updating to version 2024.3.13545 or later to resolve the issue. As a temporary workaround, consider restricting the use of deeply nested expressions in user-supplied queries to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Datalust Seq versions prior to 2024.3.13545 **Description** An issue in Datalust Seq allows expansion of identifiers in message templates to bypass the system's "Event body limit bytes" setting. This can lead to increased resource consumption. With sufficiently large events, it can cause disk space exhaustion if saved to disk, or terminate the server process with an out-of-memory error. **Recommendations** For versions prior to 2024.3.13545, update to version 2024.3.13545 or later to resolve the issue. As a temporary workaround, consider restricting the size of events to prevent excessive resource consumption.

**Name of the Vulnerable Software and Affected Versions** Datalust Seq versions prior to 2023.2.9489 **Description** The issue allows insertion of sensitive information into an externally accessible file or directory. This can be exploited when external metadata storage, such as SQL Server or PostgreSQL, is used. Exploitation requires a high-privileged user account. **Recommendations** For versions prior to 2023.2.9489, update to version 2023.2.9489 or later to resolve the issue. As a temporary workaround, consider restricting access to external metadata storage or limiting the privileges of user accounts that can access this storage.

**Name of the Vulnerable Software and Affected Versions** Datalust Seq.App.EmailPlus (aka seq-app-htmlemail) versions 3.1.0-dev-00148 through 3.1.0-dev-00176 **Description** The issue arises when Datalust Seq.App.EmailPlus uses cleartext SMTP on port 25 in cases where encryption on port 465 was intended. This can potentially expose sensitive information. **Recommendations** For versions 3.1.0-dev-00148 through 3.1.0-dev-00176, consider configuring the application to use encrypted SMTP on port 465 to prevent the use of cleartext SMTP on port 25. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Datalust Seq versions prior to 2021.2.6259 **Description** The issue allows users with view filters applied to their accounts to see query results not constrained by their view filter. This information exposure is caused by an internal cache key collision and occurs when the user's view filter includes an array or IN clause, and when another user has recently executed an identical query differing only by the array elements. **Recommendations** For versions prior to 2021.2.6259, update to version 2021.2.6259 or later to resolve the issue. As a temporary workaround, consider restricting the use of array or IN clauses in view filters to minimize the risk of exploitation.