CVE-2024-47822

Name of the Vulnerable Software and Affected Versions Directus versions prior to 10.13.2

Description The issue concerns the exposure of access tokens from query strings in system logs, potentially allowing an attacker to gain administrative control and access to unauthorized data. This occurs when the LOG STYLE is set to raw, causing the access token in req.query to be logged without redaction. The access token could be a long-lived static token, increasing the risk. If system logs are not properly sanitized or protected, an attacker with access to them can exploit this issue.

Recommendations For versions prior to 10.13.2, upgrade to release version 10.13.2 or subsequent releases to patch the vulnerability. As a temporary workaround, consider setting the LOG STYLE to a value other than raw to prevent the logging of access tokens in plain text. Rotate static tokens if they were provided using query strings to minimize the risk of exploitation. Restrict access to system logs to prevent unauthorized parties from obtaining potentially exposed access tokens.