VYPR
Unrated severityOSV Advisory· Published Dec 22, 2025· Updated Dec 22, 2025

Hasura GraphQL 1.3.3 Denial of Service via Malicious GraphQL Query

CVE-2021-47713

Description

Hasura GraphQL 1.3.3 contains a denial of service vulnerability that allows attackers to overwhelm the service by crafting malicious GraphQL queries with excessive nested fields. Attackers can send repeated requests with extremely long query strings and multiple threads to consume server resources and potentially crash the GraphQL endpoint.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.