CVE-2017-15367
published 2018-03-07CVE-2017-15367: Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on…
PriorityP274critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
24.26%
97.6th percentile
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bacula-web | bacula-web | >= 0 < 8.0.0-rc2 | 8.0.0-rc2 |
| bacula | bacula-web | <= 7.4.0 | — |
| bacula | bacula-web | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor HTTP GET requests to /client-report.php and /backupjob-report.php for SQL injection patterns in parameters such as 'client_id' and 'backupjob_name', particularly UNION-based payloads and comment terminators (# / %23). ↗
- →Flag requests containing URL-encoded SQL keywords (%20UNION%20ALL%20SELECT%20, %23) in query parameters targeting Bacula-Web endpoints. ↗
- →The 'client_id' parameter in /client-report.php and 'backupjob_name' in /backupjob-report.php are confirmed injectable; treat any non-integer or specially crafted value in these parameters as suspicious. ↗
- →Affected version is Bacula-Web 5.7.19-0ubuntu0.16.04.1; identify unpatched instances (pre-8.0.0-RC2) in the environment as high-priority targets. ↗
- ·Privilege escalation impact depends on the database user configured for Bacula-Web; a highly privileged DB account significantly increases blast radius. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Bacula-web SQL Injection Vulnerabilities
osv·2022-05-14
CVE-2017-15367 [CRITICAL] Bacula-web SQL Injection Vulnerabilities
Bacula-web SQL Injection Vulnerabilities
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
GHSA
Bacula-web SQL Injection Vulnerabilities
ghsa·2022-05-14
CVE-2017-15367 [CRITICAL] CWE-89 Bacula-web SQL Injection Vulnerabilities
Bacula-web SQL Injection Vulnerabilities
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
No detection rules found.
No writeups or analysis indexed.
http://bacula-web.org/download/articles/bacula-web-8-0-0-rc2.htmlhttp://bugs.bacula-web.org/view.php?id=211https://github.com/bacula-web/bacula-web/commit/90d4c44a0dd0d65c6fb3ab2417b83d700c8413aehttps://www.exploit-db.com/exploits/44272/http://bacula-web.org/download/articles/bacula-web-8-0-0-rc2.htmlhttp://bugs.bacula-web.org/view.php?id=211https://github.com/bacula-web/bacula-web/commit/90d4c44a0dd0d65c6fb3ab2417b83d700c8413aehttps://www.exploit-db.com/exploits/44272/
2018-03-07
Published