PT-2026-3499 · Unknown · Birkir Prime
Zast.Ai
·
Published
2026-01-19
·
Updated
2026-01-19
·
CVE-2026-1175
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
birkir prime versions prior to 0.4.0.beta.0
Description
A flaw exists in birkir prime that could allow for information disclosure through error messages. This issue affects the GraphQL Directive Handler component and involves manipulation of the
/graphql file. The vulnerability can be exploited remotely. The project was notified of the issue but has not yet responded. The exploit is publicly available.Recommendations
Update birkir prime to version 0.4.0.beta.0 or later.
Exploit
Fix
Information Disclosure
Generation of Error Message Containing Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Birkir Prime