Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-0620

Опубликовано: 30 мар. 2023
Источник: redhat
CVSS3: 6.7
EPSS Низкий

Описание

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL (MSSQL) Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provided MSSQL database. An attacker may modify these parameters to execute a malicious SQL command. This issue is fixed in versions 1.13.1, 1.12.5, and 1.11.9.

A flaw was found in HashiCorp Vault and Vault Enterprise, which are vulnerable to SQL injection. This flaw allows a local authenticated attacker to send specially-crafted SQL statements to the Microsoft SQL (MSSQL) Database Storage Backend, which could allow the attacker to view, add, modify, or delete information in the backend database.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Logging Subsystem for Red Hat OpenShiftopenshift-logging/logging-loki-rhel8Not affected
Red Hat OpenShift Container Platform 4openshift4/topology-aware-lifecycle-manager-rhel8-operatorNot affected
Red Hat Openshift Container Storage 4ocs4/cephcsi-rhel8Out of support scope
Red Hat Openshift Container Storage 4ocs4/mcg-rhel8-operatorOut of support scope
Red Hat Openshift Container Storage 4ocs4/ocs-rhel8-operatorOut of support scope
Red Hat Openshift Container Storage 4ocs4/rook-ceph-rhel8-operatorOut of support scope
Red Hat Openshift Data Foundation 4odf4/cephcsi-rhel9Not affected
Red Hat Openshift Data Foundation 4odf4/mcg-rhel9-operatorAffected
Red Hat Openshift Data Foundation 4odf4/odf-multicluster-rhel9-operatorAffected
Red Hat Openshift Data Foundation 4odf4/odr-rhel8-operatorAffected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-89
https://bugzilla.redhat.com/show_bug.cgi?id=2184663vault: Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File

EPSS

Процентиль: 38%
0.00159
Низкий

6.7 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-0620

CVSS3: 6.5
nvd
около 2 лет назад

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL (MSSQL) Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provided MSSQL database. An attacker may modify these parameters to execute a malicious SQL command. This issue is fixed in versions 1.13.1, 1.12.5, and 1.11.9.

github логотип

GHSA-v3hp-mcj5-pg39

CVSS3: 6.7
github
около 2 лет назад

HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File

fstec логотип

BDU:2024-01786

CVSS3: 6.7
fstec
около 2 лет назад

Уязвимость компонента MSSQL Database Storage Backend платформ для архивирования корпоративной информации HashiCorp Vault и Vault Enterprise, позволяющая нарушителю выполнить произвольные SQL-команды

redos логотип

ROS-20250526-06

CVSS3: 8.1
redos
24 дня назад

Множественные уязвимости vault

EPSS

Процентиль: 38%
0.00159
Низкий

6.7 Medium

CVSS3