System	Score	Found at
epss	0.00087	https://api.first.org/data/v1/epss?cve=CVE-2026-22032
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-3573-4c68-g8cc
cvssv3.1	4.3	https://github.com/directus/directus
generic_textual	MODERATE	https://github.com/directus/directus
cvssv3.1	4.3	https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23
generic_textual	MODERATE	https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23
ssvc	Track	https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23
cvssv3.1	4.3	https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc
cvssv3.1_qr	MODERATE	https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc
generic_textual	MODERATE	https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc
ssvc	Track	https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc
cvssv3.1	4.3	https://nvd.nist.gov/vuln/detail/CVE-2026-22032
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2026-22032

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2026-22032
		https://github.com/directus/directus
		https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23
CVE-2026-22032		https://nvd.nist.gov/vuln/detail/CVE-2026-22032
GHSA-3573-4c68-g8cc		https://github.com/advisories/GHSA-3573-4c68-g8cc
GHSA-3573-4c68-g8cc		https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://github.com/directus/directus

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-08T14:48:13Z/ Found at https://github.com/directus/directus/commit/dad9576ea9362905cc4de8028d3877caff36dc23

---

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-08T14:48:13Z/ Found at https://github.com/directus/directus/security/advisories/GHSA-3573-4c68-g8cc

---

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2026-22032

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.25007
EPSS Score	0.00087
Published At	May 30, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-05-30T21:05:45.367344+00:00	GitLab Importer	Import	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@directus/api/CVE-2026-22032.yml	38.6.0