PT-2022-1907 · Unknown+10 · Cyrus-Sasl+10
Published
2022-02-22
·
Updated
2024-07-01
·
CVE-2022-24407
CVSS v2.0
9.4
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Cyrus SASL versions 2.1.17 through 2.1.27
Description
The issue is related to the implementation of the authentication mechanism in Cyrus SASL, where the SQL query structure is not properly protected. This could allow a remote attacker to execute arbitrary SQL queries. The problem lies in the plugins/sql.c file, which does not escape the password for SQL INSERT or UPDATE statements.
Recommendations
For Cyrus SASL versions 2.1.17 through 2.1.27, update to version 2.1.28 or later to resolve the issue. As a temporary workaround, consider restricting access to the
plugins/sql.c file or disabling the SQL authentication mechanism until a patch is applied. Avoid using the password variable in SQL INSERT or UPDATE statements until the issue is resolved.Fix
SQL injection
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Cyrus-Sasl
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu