CVE-2024-45596

Name of the Vulnerable Software and Affected Versions: Directus versions prior to 10.13.3 Directus versions prior to 11.1.0

Description: An unauthenticated user can access the credentials of the last authenticated user via OpenID or OAuth2 when the authentication URL does not include a redirect query string. This issue occurs because the respond middleware in Directus caches GET requests under certain conditions, which does not include this specific scenario where an unauthenticated request returns user credentials. The estimated number of potentially affected devices is not specified.

Recommendations: For versions prior to 10.13.3, update to version 10.13.3 or later to resolve the issue. For versions prior to 11.1.0, update to version 11.1.0 or later to resolve the issue. As a temporary workaround, consider disabling the cache functionality until a patch is available. Restrict access to the authentication endpoints, such as https://directus.example.com/auth/login/openid/callback, to minimize the risk of exploitation.