CVE-2024-35182

HIGH EPSS 72.0%
Published May 27, 20242y ago · Modified Jun 17, 20261w ago
8.1 CVSS 3.1
High
Find Similar
Published May 27, 2024 2y ago
Last Modified Jun 17, 2026 1w ago

Description

Meshery is an open source, cloud native manager that enables the design and management of Kubernetes-based infrastructure and applications. A SQL injection vulnerability in Meshery prior to version 0.7.22 may lead to arbitrary file write by using a SQL injection stacked queries payload, and the ATTACH DATABASE command. Additionally, attackers may be able to access and modify any data stored in the database, like performance profiles (which may contain session cookies), Meshery application data, or any Kubernetes configuration added to the system. The Meshery project exposes the function `GetAllEvents` at the API URL `/api/v2/events`. The sort query parameter read in `events_streamer.go` is directly used to build a SQL query in `events_persister.go`. Version 0.7.22 fixes this issue by using the `SanitizeOrderInput` function.

CVSS Details

Base Score
8.1
Exploitability
2.8
Impact
5.2
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability None

Threat Intelligence

EPSS Exploit Probability
72.0% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-89 SQL Injection Injection

Affected Products 1

VendorProductVersionRange
layer5meshery* <0.7.22

References 5

  • github.com https://github.com/meshery/meshery/blob/b331f45c9083d7abf6b90105072b04cd22473de7/server/handlers/events_streamer.go#L52
    Product
  • github.com https://github.com/meshery/meshery/blob/b331f45c9083d7abf6b90105072b04cd22473de7/server/models/events_persister.go#L47
    Product
  • github.com https://github.com/meshery/meshery/commit/b55f6064d0c6a965aee38f30281f99da7dc4420c
    Patch
  • github.com https://github.com/meshery/meshery/pull/10280
    Issue TrackingPatch
  • securitylab.github.com https://securitylab.github.com/advisories/GHSL-2024-013_GHSL-2024-014_Meshery/
    ExploitThird Party Advisory

Remediation

  • github.com https://github.com/meshery/meshery/commit/b55f6064d0c6a965aee38f30281f99da7dc4420c
    Patch
  • github.com https://github.com/meshery/meshery/pull/10280
    Issue TrackingPatch