CVE-2024-28239

Summary

CVE-2024-28239 is a newly disclosed vulnerability in Directus, a real-time API and dashboard for managing SQL databases. The authentication API contains an open redirect vulnerability, where a malicious site can be specified as the `redirect` parameter during login attempts. Although user credentials aren't directly exposed, attackers can manipulate the redirection to trick users into visiting malicious sites, often disguised as error messages requesting password updates. This issue primarily affects users who log in via Directus's Auth API and use OAuth2. The vulnerability has been remedied in version 10.10.0, and users are strongly advised to upgrade as soon as possible. At present, there are no known workarounds for this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.