Unknown · Vektah Gqlparser · CVE-2023-49559
**Name of the Vulnerable Software and Affected Versions**
vektah gqlparser version 2.5.10
**Description**
An issue in the vektah gqlparser open-source-library allows a remote attacker to cause a denial of service via a crafted script to the `parserDirectives` function. This issue can be exploited to overload the parser, resulting in a denial of service.
**Recommendations**
For version 2.5.10, consider disabling the `parserDirectives` function as a temporary workaround until a patch is available. Restrict access to the `parseDirectives` function to minimize the risk of exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.