CVE-2024-58357
MEDIUM
NVD
CVSS Score
6.5
Severity
MEDIUM
Published
Jul 18, 2026
Vendor
unknown
Description
SurrealDB versions before 2.1.0 contain an uncaught exception vulnerability in the rand::time() function that panics when unwrap is called on a None result from timestamp_opt. Authorized clients can repeatedly invoke rand::time() to reliably trigger server panics and cause denial of service.