Vulnerability Description
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus stores revision records (in directus_revisions) whenever items are created or updated. Due to the revision snapshot code not consistently calling the prepareDelta sanitization pipeline, sensitive fields (including user tokens, two-factor authentication secrets, external auth identifiers, auth data, stored credentials, and AI provider API keys) could be stored in plaintext within revision records. This vulnerability is fixed in 11.17.0.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Monospace | Directus | < 11.17.0 |
Related Weaknesses (CWE)
References
- https://github.com/directus/directus/releases/tag/v11.17.0ProductRelease Notes
- https://github.com/directus/directus/security/advisories/GHSA-mvv8-v4jj-g47jVendor Advisory
FAQ
What is CVE-2026-39943?
CVE-2026-39943 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, Directus stores revision records (in directus_revisions) whenever items are created or updated. Due t...
How severe is CVE-2026-39943?
CVE-2026-39943 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-39943?
Check the references section above for vendor advisories and patch information. Affected products include: Monospace Directus.