Security Advisory

CVE-2021-47714

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-22 21:35:25

Last updated 2026-04-07 14:05:38

Assigner VulnCheck

State PUBLISHED

Description

Hasura GraphQL 1.3.3 contains a local file read vulnerability that allows attackers to access system files through SQL injection in the query endpoint. Attackers can exploit the pg_read_file() PostgreSQL function by crafting malicious SQL queries to read arbitrary files on the server.

← Browse all CVEs View on cve.org ↗