Lucene search

Veracode Vulnerability DatabaseVERACODE:41199

HistoryJul 11, 2023 - 4:43 a.m.

Arbitrary Code Execution

2023-07-1104:43:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

sqlfluff

arbitrary code execution

jinja.py

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.2%

JSON

sqlfluff is vulnerable to Arbitrary Code Execution. The vulnerability exists because the _extract_libraries_from_config function of jinja.py does not properly enable the CLI option to override the library_path option in the template, allowing an attacker with access to the config file to inject and execute malicious Python code.

CPENameOperatorVersion
sqlfluffle2.1.1
sqlfluffle2.1.1

CPE	Name	Operator	Version
	sqlfluff	le	2.1.1
	sqlfluff	le	2.1.1

References

github.com/sqlfluff/sqlfluff/commit/6cdc38d76bedab4801b035c04d3c2b3aea17de86

github.com/sqlfluff/sqlfluff/pull/4925

github.com/sqlfluff/sqlfluff/releases/tag/2.1.2

github.com/sqlfluff/sqlfluff/security/advisories/GHSA-jqhc-m2j3-fjrx

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.2%

JSON

Related for VERACODE:41199