CVE-2026-1173

birkir prime GraphQL Array Based Query Batch graphql denial of service

CVSS 6.9 MEDIUMEPSS 0.7%CWE-404

A vulnerability was found in birkir prime up to 0.4.0.beta.0. The impacted element is an unknown function of the file /graphql of the component GraphQL Array Based Query Batch Handler. The manipulation results in denial of service. The attack can be executed remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Produtos afetados

birkir · prime

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/birkir/prime/https://github.com/birkir/prime/issues/544 https://vuldb.com/?ctiid.341767 https://vuldb.com/?id.341767 https://vuldb.com/?submit.731104