Loading a malicious schema definition in GraphQL::Schema.from_introspection
(or GraphQL::Schema::Loader.load
) can result in remote code execution. Any system which loads a schema by JSON from an untrusted source is vulnerable, including those that use GraphQL::Client to load external schemas via GraphQL introspection.
{ "nvd_published_at": "2025-03-12T19:15:40Z", "cwe_ids": [ "CWE-94" ], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2025-03-12T19:28:00Z" }