CVE-2022-24407 — SQL Injection in Cyrus-sasl

CWE-89 — SQL Injection11 documents9 sources

Severity

8.8HIGHNVD

EPSS

0.4%

top 37.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cyrusimap Cyrus-sasl Debian Linux Fedoraproject Fedora +3 more

Timeline

PublishedFeb 24

Latest updateJan 15

Description

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

▶NVDcyrusimap/cyrus-sasl2.1.17 — 2.1.27

▶NVDoracle/communications_cloud_native_core_console22.2.0

▶NVDoracle/communications_cloud_native_core_security_edge_protection_proxy22.1.1

▶NVDoracle/communications_cloud_native_core_network_function_cloud_native_environment22.2.0

Also affects: Debian Linux 10.0, 11.0, 9.0, Fedora 34, 35, 36

Patches

Patch: www.openwall.com ↗Patch: www.oracle.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-fvc5-cffp-h22w: In Cyrus SASL 2↗2022-02-25

▶

OSV

CVE-2022-24407: In Cyrus SASL 2↗2022-02-24

▶

CVEList

CVE-2022-24407: In Cyrus SASL 2↗2022-02-23

▶

📋Vendor Advisories

Oracle

Oracle Oracle Communications Risk Matrix: Install/Upgrade (Cyrus SASL) — CVE-2022-24407↗2023-01-15

▶

Oracle

Oracle Oracle Communications Risk Matrix: CNC Console (Cyrus SASL) — CVE-2022-24407↗2022-07-15

▶

Ubuntu

Cyrus SASL vulnerability↗2022-02-22

▶

Ubuntu

Cyrus SASL vulnerability↗2022-02-22

▶

Red Hat

cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands↗2022-02-22

▶