System	Score	Found at
epss	0.00041	https://api.first.org/data/v1/epss?cve=CVE-2025-64746
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-9x5g-62gj-wqf2
cvssv3.1	4.6	https://github.com/directus/directus
generic_textual	MODERATE	https://github.com/directus/directus
cvssv3.1	4.6	https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8
generic_textual	MODERATE	https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8
ssvc	Track	https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8
cvssv3.1	4.6	https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2
cvssv3.1_qr	MODERATE	https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2
generic_textual	MODERATE	https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2
ssvc	Track	https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2
cvssv3.1	4.6	https://nvd.nist.gov/vuln/detail/CVE-2025-64746
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2025-64746

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2025-64746
		https://github.com/directus/directus
		https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8
CVE-2025-64746		https://nvd.nist.gov/vuln/detail/CVE-2025-64746
GHSA-9x5g-62gj-wqf2		https://github.com/advisories/GHSA-9x5g-62gj-wqf2
GHSA-9x5g-62gj-wqf2		https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N Found at https://github.com/directus/directus

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N Found at https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-13T21:18:13Z/ Found at https://github.com/directus/directus/commit/84d7636969083387164ce5d2fd15a65e11e2d0b8

---

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N Found at https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-13T21:18:13Z/ Found at https://github.com/directus/directus/security/advisories/GHSA-9x5g-62gj-wqf2

---

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2025-64746

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.12705
EPSS Score	0.00041
Published At	June 5, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-02T04:48:28.867129+00:00	GitLab Importer	Import	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/directus/CVE-2025-64746.yml	38.6.0