PatchSiren cyber security CVE debrief
CVE-2024-58370 surrealdb CVE debrief
CVE-2024-58370 is a high-severity vulnerability in SurrealDB, a database management system. The vulnerability exists due to the lack of recursion depth limits when parsing nested SurrealQL statements, including IF, RELATE, and attribute access idioms. This can be exploited by authorized attackers to submit queries with excessive nesting depth, causing a stack overflow and crashing the server. The vulnerability has a CVSS score of 7.1 and is classified as HIGH severity. Affected users should be aware of this vulnerability and take necessary precautions to prevent exploitation.
- Vendor
- surrealdb
- Product
- Unknown
- CVSS
- HIGH 7.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-18
- Original CVE updated
- 2026-07-18
- Advisory published
- 2026-07-18
- Advisory updated
- 2026-07-18
Who should care
Users of SurrealDB versions before 1.1.0 should be aware of this vulnerability and take necessary precautions to prevent exploitation. This includes administrators, developers, and security teams responsible for managing and securing SurrealDB deployments. They should review the official advisory and CVE record to validate affected scope, severity, and vendor guidance.
Technical summary
The vulnerability is caused by the lack of recursion depth limits in SurrealDB's parsing of nested SurrealQL statements, including IF, RELATE, and attribute access idioms. This allows attackers to submit queries with excessive nesting depth, leading to a stack overflow and server crash. The vulnerability has a CVSS score of 7.1 and is classified as HIGH severity. Affected users should be aware of this vulnerability and take necessary precautions to prevent exploitation. SurrealDB versions before 1.1.0 are vulnerable to this issue.
Defensive priority
High
Recommended defensive actions
- Update SurrealDB to version 1.1.0 or later
- Implement input validation and sanitization for SurrealQL queries
- Monitor server logs for suspicious activity
- Consider implementing a web application firewall (WAF) to detect and prevent attacks
- Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up
- Review compensating controls for exposed systems while remediation is scheduled and verified
- Track exceptions, retest remediated assets, and close the item only after evidence is documented
Evidence notes
The vulnerability was reported by Vulncheck and is tracked under CVE-2024-58370. The NVD entry is currently in the 'Received' status. Evidence of the vulnerability's existence and impact is limited, and defenders should verify the affected scope and severity with the vendor. The CVE record was published on 2026-07-18T14:17:10.140Z and has not been modified since then. Defenders should review the official advisory and CVE record for more information.
Official resources
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-18T14:17:10.140Z and has not been modified since then. The NVD entry is currently Received.