cvelistv5 - CVE-2023-30465

CVE-2023-30465 (GCVE-0-2023-30465)

Vulnerability from cvelistv5

Published

2023-04-11 14:35

Modified

2025-02-13 16:49

Severity ?

CWE

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0. By manipulating the "orderType" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the user with ID 1 from the "user" table, one character at a time. Users are advised to upgrade to Apache InLong's 1.6.0 or cherry-pick [1] to solve it. https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html [1] https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529

References

URL	Tags
security@apache.org	http://www.openwall.com/lists/oss-security/2023/04/11/2	Mailing List, Third Party Advisory
security@apache.org	https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0	Mailing List
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2023/04/11/2	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0	Mailing List

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache InLong	Version: 1.4.0 ≤ 1.5.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T14:28:50.581Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:apache:inlong:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "inlong",
            "vendor": "apache",
            "versions": [
              {
                "lessThanOrEqual": "1.5.0",
                "status": "affected",
                "version": "1.4.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-30465",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-22T15:18:25.406363Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-22T15:20:37.050Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Apache InLong",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "1.5.0",
              "status": "affected",
              "version": "1.4.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "escape Wang"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.\u003cp\u003eThis issue affects Apache InLong: from 1.4.0 through 1.5.0.\u0026nbsp;By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u0026nbsp;\u0026nbsp; user with ID 1 from the \"user\" table, one character at a time.\u0026nbsp; Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\u003cbr\u003e\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html\"\u003e\u003cbr\u003e\u003c/a\u003e\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e[1] \u003c/span\u003e\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://github.com/apache/inlong/issues/7529\"\u003ehttps://github.com/apache/inlong/issues/7529\u003c/a\u003e\u003c/p\u003e"
            }
          ],
          "value": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529"
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "text": "important"
            },
            "type": "Textual description of severity"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-89",
              "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-04-11T14:40:07.204Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apache InLong: SQL injection in apache inLong 1.5.0",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2023-30465",
    "datePublished": "2023-04-11T14:35:11.308Z",
    "dateReserved": "2023-04-10T09:03:48.457Z",
    "dateUpdated": "2025-02-13T16:49:29.206Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-30465\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2023-04-11T15:15:10.673\",\"lastModified\":\"2025-02-13T17:16:24.653\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \\\"orderType\\\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \\\"user\\\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\\n \\n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \\n\\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-89\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:inlong:1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2305A709-61D9-4070-A08A-B70E49A61794\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:inlong:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"899C3A43-FC72-4DAB-9CD1-61257F56DE73\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2023/04/11/2\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/04/11/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/04/11/2\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T14:28:50.581Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-30465\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-22T15:18:25.406363Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:apache:inlong:*:*:*:*:*:*:*:*\"], \"vendor\": \"apache\", \"product\": \"inlong\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.4.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"1.5.0\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-22T15:19:28.975Z\"}}], \"cna\": {\"title\": \"Apache InLong: SQL injection in apache inLong 1.5.0\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"escape Wang\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"important\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache InLong\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"1.5.0\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/04/11/2\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\\u00a0By manipulating the \\\"orderType\\\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\\u00a0\\u00a0 user with ID 1 from the \\\"user\\\" table, one character at a time.\\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\\n \\n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \\n\\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.\u003cp\u003eThis issue affects Apache InLong: from 1.4.0 through 1.5.0.\u0026nbsp;By manipulating the \\\"orderType\\\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u0026nbsp;\u0026nbsp; user with ID 1 from the \\\"user\\\" table, one character at a time.\u0026nbsp; Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\u003cbr\u003e\u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html\\\"\u003e\u003cbr\u003e\u003c/a\u003e\\n\\n\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003e[1] \u003c/span\u003e\u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://github.com/apache/inlong/issues/7529\\\"\u003ehttps://github.com/apache/inlong/issues/7529\u003c/a\u003e\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-89\", \"description\": \"CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2023-04-11T14:40:07.204Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-30465\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T16:49:29.206Z\", \"dateReserved\": \"2023-04-10T09:03:48.457Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2023-04-11T14:35:11.308Z\", \"assignerShortName\": \"apache\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

ghsa-cqr6-3x3f-9wr3

Vulnerability from github

Published

2023-07-06 19:24

Modified

2025-02-13 18:52

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

Apache InLong SQL Injection vulnerability

Details

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.inlong:manager-pojo"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "1.4.0"
            },
            {
              "fixed": "1.6.0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.inlong:manager-service"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "1.4.0"
            },
            {
              "fixed": "1.6.0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2023-30465"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-89"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2023-07-06T22:57:41Z",
    "nvd_published_at": "2023-04-11T15:15:00Z",
    "severity": "MODERATE"
  },
  "details": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick PR #7530 to solve it.",
  "id": "GHSA-cqr6-3x3f-9wr3",
  "modified": "2025-02-13T18:52:07Z",
  "published": "2023-07-06T19:24:14Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30465"
    },
    {
      "type": "WEB",
      "url": "https://github.com/apache/inlong/issues/7529"
    },
    {
      "type": "WEB",
      "url": "https://github.com/apache/inlong/pull/7530"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/apache/inlong"
    },
    {
      "type": "WEB",
      "url": "https://inlong.apache.org/zh-CN/download/release-1.6.0"
    },
    {
      "type": "WEB",
      "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Apache InLong SQL Injection vulnerability"
}

fkie_cve-2023-30465

Vulnerability from fkie_nvd

Published

2023-04-11 15:15

Modified

2025-02-13 17:16

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

References

URL	Tags
security@apache.org	http://www.openwall.com/lists/oss-security/2023/04/11/2	Mailing List, Third Party Advisory
security@apache.org	https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0	Mailing List
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2023/04/11/2	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0	Mailing List

Impacted products

	Vendor	Product	Version
	apache	inlong	1.4.0
	apache	inlong	1.5.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:inlong:1.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2305A709-61D9-4070-A08A-B70E49A61794",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:inlong:1.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "899C3A43-FC72-4DAB-9CD1-61257F56DE73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529"
    }
  ],
  "id": "CVE-2023-30465",
  "lastModified": "2025-02-13T17:16:24.653",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2023-04-11T15:15:10.673",
  "references": [
    {
      "source": "security@apache.org",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
    }
  ],
  "sourceIdentifier": "security@apache.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-89"
        }
      ],
      "source": "security@apache.org",
      "type": "Primary"
    }
  ]
}

cnvd-2023-42968

Vulnerability from cnvd

Title: Apache InLong SQL注入漏洞

Description:

Apache InLong是美国阿帕奇（Apache）基金会的一站式的海量数据集成框架。

Apache InLong存在SQL注入漏洞。攻击者可利用该漏洞查看、添加、修改或删除后端数据库中的信息。

Severity: 中

Patch Name: Apache InLong SQL注入漏洞的补丁

Patch Description:

Apache InLong是美国阿帕奇（Apache）基金会的一站式的海量数据集成框架。

Apache InLong存在SQL注入漏洞。攻击者可利用该漏洞查看、添加、修改或删除后端数据库中的信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： http://www.openwall.com/lists/oss-security/2023/04/11/2

Reference: https://nvd.nist.gov/vuln/detail/CVE-2023-30465

Impacted products

Name
Apache InLong >=1.4.0，<=1.5.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-30465",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-30465"
    }
  },
  "description": "Apache InLong\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u7ad9\u5f0f\u7684\u6d77\u91cf\u6570\u636e\u96c6\u6210\u6846\u67b6\u3002\n\nApache InLong\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u67e5\u770b\u3001\u6dfb\u52a0\u3001\u4fee\u6539\u6216\u5220\u9664\u540e\u7aef\u6570\u636e\u5e93\u4e2d\u7684\u4fe1\u606f\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.openwall.com/lists/oss-security/2023/04/11/2",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-42968",
  "openTime": "2023-06-01",
  "patchDescription": "Apache InLong\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u7ad9\u5f0f\u7684\u6d77\u91cf\u6570\u636e\u96c6\u6210\u6846\u67b6\u3002\r\n\r\nApache InLong\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u67e5\u770b\u3001\u6dfb\u52a0\u3001\u4fee\u6539\u6216\u5220\u9664\u540e\u7aef\u6570\u636e\u5e93\u4e2d\u7684\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache InLong SQL\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Apache InLong \u003e=1.4.0\uff0c\u003c=1.5.0"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2023-30465",
  "serverity": "\u4e2d",
  "submitTime": "2023-04-14",
  "title": "Apache InLong SQL\u6ce8\u5165\u6f0f\u6d1e"
}

gsd-2023-30465

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2023-30465

Aliases

CVE-2023-30465

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-30465",
    "id": "GSD-2023-30465"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-30465"
      ],
      "details": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529 \n\n",
      "id": "GSD-2023-30465",
      "modified": "2023-12-13T01:20:52.417580Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@apache.org",
        "ID": "CVE-2023-30465",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Apache InLong",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c=",
                          "version_name": "1.4.0",
                          "version_value": "1.5.0"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Apache Software Foundation"
            }
          ]
        }
      },
      "credits": [
        {
          "lang": "en",
          "value": "escape Wang"
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529 \n\n"
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-89",
                "lang": "eng",
                "value": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0",
            "refsource": "MISC",
            "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2023/04/11/2",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[1.4.0,1.6.0)",
          "affected_versions": "All versions starting from 1.4.0 before 1.6.0",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-89",
            "CWE-937"
          ],
          "date": "2023-07-06",
          "description": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1] https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529 \n\n",
          "fixed_versions": [
            "1.6.0"
          ],
          "identifier": "CVE-2023-30465",
          "identifiers": [
            "GHSA-cqr6-3x3f-9wr3",
            "CVE-2023-30465"
          ],
          "not_impacted": "All versions before 1.4.0, all versions starting from 1.6.0",
          "package_slug": "maven/org.apache.inlong/manager-pojo",
          "pubdate": "2023-07-06",
          "solution": "Upgrade to version 1.6.0 or above.",
          "title": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2023-30465",
            "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0",
            "https://github.com/apache/inlong/issues/7529",
            "https://github.com/apache/inlong/pull/7530",
            "https://inlong.apache.org/zh-CN/download/release-1.6.0/",
            "https://github.com/advisories/GHSA-cqr6-3x3f-9wr3"
          ],
          "uuid": "029f5eab-aa12-44e6-90c2-ea838ad6adf0"
        },
        {
          "affected_range": "[1.4.0,1.6.0)",
          "affected_versions": "All versions starting from 1.4.0 before 1.6.0",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-89",
            "CWE-937"
          ],
          "date": "2023-07-06",
          "description": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1] https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529 \n\n",
          "fixed_versions": [
            "1.6.0"
          ],
          "identifier": "CVE-2023-30465",
          "identifiers": [
            "GHSA-cqr6-3x3f-9wr3",
            "CVE-2023-30465"
          ],
          "not_impacted": "All versions before 1.4.0, all versions starting from 1.6.0",
          "package_slug": "maven/org.apache.inlong/manager-service",
          "pubdate": "2023-07-06",
          "solution": "Upgrade to version 1.6.0 or above.",
          "title": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2023-30465",
            "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0",
            "https://github.com/apache/inlong/issues/7529",
            "https://github.com/apache/inlong/pull/7530",
            "https://inlong.apache.org/zh-CN/download/release-1.6.0/",
            "https://github.com/advisories/GHSA-cqr6-3x3f-9wr3"
          ],
          "uuid": "140715da-7c64-4e24-abf7-860a6f7d9b4e"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apache:inlong:1.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:inlong:1.5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2023-30465"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.4.0 through 1.5.0.\u00a0By manipulating the \"orderType\" parameter and the ordering of the returned content using an SQL injection attack, an attacker can extract the username of the\u00a0\u00a0 user with ID 1 from the \"user\" table, one character at a time.\u00a0 Users are advised to upgrade to Apache InLong\u0027s 1.6.0 or cherry-pick [1] to solve it.\n \n https://programmer.help/blogs/jdbc-deserialization-vulnerability-learning.html \n\n[1]  https://github.com/apache/inlong/issues/7529 https://github.com/apache/inlong/issues/7529 \n\n"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-89"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0",
              "refsource": "MISC",
              "tags": [
                "Mailing List"
              ],
              "url": "https://lists.apache.org/thread/mrh4nr3jrlbj6nxkn4q8hddbfh1pnok0"
            },
            {
              "name": "http://www.openwall.com/lists/oss-security/2023/04/11/2",
              "refsource": "MISC",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://www.openwall.com/lists/oss-security/2023/04/11/2"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2023-04-18T19:30Z",
      "publishedDate": "2023-04-11T15:15Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2023-30465 (GCVE-0-2023-30465)

Vulnerability from cvelistv5

ghsa-cqr6-3x3f-9wr3

Vulnerability from github

fkie_cve-2023-30465

Vulnerability from fkie_nvd

cnvd-2023-42968

Vulnerability from cnvd

gsd-2023-30465

Vulnerability from gsd

Tags

Sightings

Nomenclature