CVE-2024-58366 PUBLISHED

SurrealDB before 1.1.1 Format String via Scripting Functions

Assigner: VulnCheck
Reserved: 18.07.2026 Published: 18.07.2026 Updated: 18.07.2026

SurrealDB before 1.1.1 contains a format string vulnerability in the rquickjs Exception::throw_type function when scripting is enabled. Attackers with scripting privileges can supply format string sequences in error inputs to read arbitrary memory or execute code with SurrealDB process privileges.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
CVSS Score: 9

Product Status

Vendor surrealdb
Product surrealdb
Versions Default: unaffected
  • affected from 0 to 1.1.1 (excl.)
  • Version 1.1.1 is unaffected
Vendor surrealdb
Product surrealdb
Versions Default: unaffected
  • affected from 0 to 0.4.2 (excl.)
  • Version 0.4.2 is unaffected

Credits

  • akkie finder

References

Problem Types

  • Use of Externally-Controlled Format String CWE