Lucene search

GitHub_MCVELIST:CVE-2022-31058

HistoryJun 29, 2022 - 5:55 p.m.

CVE-2022-31058 SQL injection via the field name of a tracker in Tuleap

2022-06-2917:55:24

CWE-89

GitHub_M

www.cve.org

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.2%

JSON

Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration. In versions prior to 13.9.99.95 Tuleap does not sanitize properly user inputs when constructing the SQL query to retrieve data for the tracker reports. An attacker with the capability to create a new tracker can execute arbitrary SQL queries. Users are advised to upgrade. There is no known workaround for this issue.

CNA Affected

[
  {
    "product": "tuleap",
    "vendor": "Enalean",
    "versions": [
      {
        "status": "affected",
        "version": "< 13.9.99.95"
      }
    ]
  }
]

References

github.com/Enalean/tuleap/commit/b91bcd57c8344ec2a4c1833629e400cef4dd901a

github.com/Enalean/tuleap/security/advisories/GHSA-4v2p-rwq9-3vjf

tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=b91bcd57c8344ec2a4c1833629e400cef4dd901a

tuleap.net/plugins/tracker/?aid=27172

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.2%

JSON

Related for CVELIST:CVE-2022-31058