All intelligence
// vulnerability record
live · NVDCVE-2025-27911
MEDIUMpublished 2025-03-11 08:15 UTC · 1 year ago · modified 2026-06-17 09:04 UTC
6.5
CVSS / 10
// description
An issue was discovered in Datalust Seq before 2024.3.13545. Expansion of identifiers in message templates can be used to bypass the system "Event body limit bytes" setting, leading to increased resource consumption. With sufficiently large events, there can be disk space exhaustion (if saved to disk) or a termination of the server process with an out-of-memory error.
// cvss 3.1 vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
// weaknesses (CWE)
- CWE-770