CVE Tools

CVE-2025-30351

Suspended Directus user can continue to use session token to access API

Published: Mar 26, 2025Updated: Aug 26, 2025 Sources: CVE List NVD GHSACWE-672

No Known Exploits

Patch Available

Description

Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 10.10.0 and prior to version 11.5.0, a suspended user can use the token generated in session auth mode to access the API despite their status. This happens because there is a check missing in `verifySessionJWT` to verify that a user is actually still active and allowed to access the API. One can extract the session token obtained by, e.g. login in to the app while still active and then, after the user has been suspended continue to use that token until it expires. Version 11.5.0 patches the issue.

CVSS Vector Breakdown

Exploitability

AV:NAttack Vector

Network

AC:LAttack Complexity

Low

PR:LPrivileges Required

Low

UI:RUser Interaction

Required

Scope

S:UScope

Unchanged

Impact

C:LConfidentiality

Low

I:NIntegrity

None

A:NAvailability

None

Open in CVSS calculator →

Weaknesses

Affected Products

directus monospace

Mixed

Web & CMS Plugins / cms-core

directus npm OSS Libraries

@directus/api npm OSS Libraries

@directus/types npm OSS Libraries

directus directus

Mixed

Web & CMS Plugins / cms-core

monospacecommercialWeb & CMS Pluginsaka directus

npmpackage-ecosystemOSS Libraries

directuscommercialWeb & CMS Pluginsaka @directus/api, directus api

Exploitability

Official Patch Available

References

https://github.com/directus/directus/commit/ef179931c55b50c110feca8404901d5633940771

https://github.com/directus/directus/security/advisories/GHSA-56p6-qw3c-fq2g

https://nvd.nist.gov/vuln/detail/CVE-2025-30351

and 1 more references View all →

Timeline

Published

Mar 26, 2025

Last Updated

Aug 26, 2025

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2025-30351 and every CVE in our database. Create a free account — no credit card required.

Create Free Account

Plain-language analysis

Impact assessment and exploitation scenario in plain English

Attack graph visualization

Interactive attack path and kill chain mapping

Exploit details & PoC links

ExploitDB, Metasploit, GitHub PoCs with direct links

Nuclei scanner templates

Ready-to-use vulnerability scanner templates

Full remediation guide

Patch instructions, workarounds, and compliance impact

Interactive AI chat

Ask questions about this vulnerability in natural language

Related vulnerabilities

Semantically similar CVEs and attack patterns

REST API & MCP access

Integrate vulnerability data into your workflows