CVE-2026-35413: Directus: GraphQL Schema SDL Disclosure Setting

April 4, 2026 (updated April 7, 2026)

When GRAPHQL_INTROSPECTION=false is configured, Directus correctly blocks standard GraphQL introspection queries (__schema, __type). However, the server_specs_graphql resolver on the /graphql/system endpoint returns an equivalent SDL representation of the schema and was not subject to the same restriction. This allowed the introspection control to be bypassed, exposing schema structure (collection names, field names, types, and relationships) to unauthenticated users at the public permission level, and to authenticated users at their permitted permission level.

References

github.com/advisories/GHSA-wxwm-3fxv-mrvx
github.com/directus/directus
github.com/directus/directus/security/advisories/GHSA-wxwm-3fxv-mrvx
nvd.nist.gov/vuln/detail/CVE-2026-35413

Code Behaviors & Features

Detect and mitigate CVE-2026-35413 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →