Datalust Seq
7 CVEs affecting Datalust Seq. Latest disclosed: 2025-03-11. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-8096 | Critical | 9.8 | 2018-03-14 | Datalust Seq before 4.2.605 is vulnerable to Authentication Bypass (with the attacker obtaining admin access) via '"Name":"isauthenticationenabled","Value":fal… |
CVE-2024-29866 | Critical | 9.1 | 2024-03-21 | Datalust Seq before 2023.4.11151 and 2024 before 2024.1.11146 has Incorrect Access Control because a Project Owner or Organization Owner can escalate to System… |
CVE-2025-27912 | High | 8.8 | 2025-03-11 | An issue was discovered in Datalust Seq before 2024.3.13545. Missing Content-Type validation can lead to CSRF when (1) Entra ID or OpenID Connect authenticatio… |
CVE-2025-27911 | Medium | 6.5 | 2025-03-11 | An issue was discovered in Datalust Seq before 2024.3.13545. Expansion of identifiers in message templates can be used to bypass the system "Event body limit b… |
CVE-2021-41329 | Medium | 6.5 | 2021-09-27 | Datalust Seq before 2021.2.6259 allows users (with view filters applied to their accounts) to see query results not constrained by their view filter. This info… |
CVE-2024-58102 | Medium | 5.7 | 2025-03-11 | An issue was discovered in Datalust Seq before 2024.3.13545. An insecure default parsing depth limit allows stack consumption when parsing user-supplied querie… |
CVE-2023-38195 | Medium | 4.9 | 2023-07-22 | Datalust Seq before 2023.2.9489 allows insertion of sensitive information into an externally accessible file or directory. This is exploitable only when extern… |