SCA: security update for directus (GHSA-4hmq-ggrm-qfc6)

medium Tenable Self-Hosted Container Security Plugin ID 410219

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Directus is a real-time API and App dashboard for managing SQL database content. Instances relying on an
allow-listed reset URL are vulnerable to an HTML injection attack through the use of query parameters in
the reset URL. An attacker could exploit this to email users urls to the servers domain but which may
contain malicious code. The problem has been resolved and released under version 9.23.0. People relying on
a custom password reset URL should upgrade to 9.23.0 or later, or remove the custom reset url from the
configured allow list. Users are advised to upgrade. Users unable to upgrade may disable the custom reset
URL allow list as a workaround. (CVE-2023-27474)

See Also

https://github.com/advisories/GHSA-4hmq-ggrm-qfc6

Plugin Details

Severity: Medium

ID: 410219

Version: Revision 1.6

Type: Local

Family: SCA Checks

Published: 1/23/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 2.3

Percentile: 9.14

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N

CVSS Score Source: CVE-2023-27474

CVSS v3

Risk Factor: Medium

Base Score: 5.4

Temporal Score: 4.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 3/7/2023

Vulnerability Publication Date: 3/6/2023

Reference Information

CVE: CVE-2023-27474

cwe: CWE-79