<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>SurrealDB (Before 1.0.1) - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/surrealdb-before-1.0.1/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Sat, 18 Jul 2026 14:19:32 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/surrealdb-before-1.0.1/feed.xml" rel="self" type="application/rss+xml"/><item><title>SurrealDB Default Permissions Vulnerability</title><link>https://feed.craftedsignal.io/briefs/2026-07-surrealdb-default-permissions/</link><pubDate>Sat, 18 Jul 2026 14:19:32 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-surrealdb-default-permissions/</guid><description>SurrealDB versions prior to 1.0.1 are vulnerable due to default table permissions being set to FULL instead of NONE, allowing attackers with existing database access or unauthenticated users on publicly exposed instances to perform unrestricted SELECT, CREATE, UPDATE, and DELETE operations on tables that lack explicit permission settings, leading to unauthorized data access, modification, or deletion.</description><content:encoded><![CDATA[<p>CVE-2023-54366 details a critical vulnerability in SurrealDB versions prior to 1.0.1 where the default table permissions are configured to FULL instead of NONE. This misconfiguration allows unauthenticated users or those with existing database access on publicly exposed instances to bypass intended access controls. Attackers can perform a wide range of operations including SELECT, CREATE, UPDATE, and DELETE on any table within their authorization scope that does not have explicit permission settings. This flaw presents a significant risk to data confidentiality, integrity, and availability, potentially leading to unauthorized data exposure, manipulation, or complete deletion. Organizations using affected SurrealDB instances are strongly advised to patch immediately to prevent exploitation.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>Attacker identifies a publicly exposed SurrealDB instance lacking proper network access controls or gains initial unauthorized access to a SurrealDB database.</li>
<li>Attacker initiates a connection to the vulnerable SurrealDB instance.</li>
<li>Attacker queries the database for existing tables and their schema.</li>
<li>The vulnerability (CVE-2023-54366) allows default permissions to be &quot;FULL&quot; for tables lacking explicit &quot;NONE&quot; settings.</li>
<li>Attacker exploits these default permissions to perform unauthorized <code>SELECT</code> operations on sensitive tables, leading to data exfiltration.</li>
<li>Attacker further utilizes <code>CREATE</code>, <code>UPDATE</code>, or <code>DELETE</code> operations on tables to manipulate or destroy data within the database.</li>
<li>The attack culminates in unauthorized data access, modification, or deletion, compromising the integrity and confidentiality of the data.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2023-54366 can lead to severe consequences, primarily affecting data confidentiality, integrity, and availability. Attackers can read sensitive information from any unprotected table, resulting in data breaches and regulatory non-compliance. They can also create, modify, or delete existing data, leading to data corruption, financial fraud, or service disruption. The impact is especially critical for publicly exposed instances, where unauthenticated attackers could perform these operations, affecting potentially all data stored in misconfigured tables. The extent of damage depends on the sensitivity of the data and the attacker's objectives.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch SurrealDB to version 1.0.1 or later to address CVE-2023-54366 immediately.</li>
<li>Review all SurrealDB table definitions and explicitly set permissions for sensitive tables to <code>NONE</code> for unauthenticated or untrusted users, or as required by your security policy.</li>
<li>Restrict network access to SurrealDB instances, ensuring they are not publicly exposed unless absolutely necessary, and only accessible from trusted IP ranges.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>misconfiguration</category><category>database</category><category>vulnerability</category><category>data-exfiltration</category></item></channel></rss>