CVE-2024-9925

SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially crafted SQL query to the ‘email’ parameter on the ‘RequestPasswordChange’ endpoint.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://incibe.es/en/incibe-cert/notices/aviso-sci/sql-injection-qplant-tai-smart-factory	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:taismartfactory:qplant_sf:1.0:*:*:*:*:*:*:*

History

17 Oct 2024, 18:09

Type	Values Removed	Values Added
References	~~() https://incibe.es/en/incibe-cert/notices/aviso-sci/sql-injection-qplant-tai-smart-factory -~~	() https://incibe.es/en/incibe-cert/notices/aviso-sci/sql-injection-qplant-tai-smart-factory - Third Party Advisory
First Time		Taismartfactory Taismartfactory qplant Sf
CPE		cpe:2.3:a:taismartfactory:qplant_sf:1.0:::::::*
Summary		(es) Vulnerabilidad de inyección SQL en la versión 1.0 de QPLANT SF de TAI Smart Factory. La explotación de esta vulnerabilidad podría permitir a un atacante remoto recuperar toda la información de la base de datos mediante el envío de una consulta SQL especialmente manipulada al parámetro 'email' en el punto de conexión 'RequestPasswordChange'.

15 Oct 2024, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-15 09:15

Updated : 2024-10-17 18:09

NVD link : CVE-2024-9925

Mitre link : CVE-2024-9925

CVE.ORG link : CVE-2024-9925

JSON object : View

Products Affected

taismartfactory

qplant_sf

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2024-9925", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "cve-coordination@incibe.es", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-10-15T09:15:03.990", "references": [{"url": "https://incibe.es/en/incibe-cert/notices/aviso-sci/sql-injection-qplant-tai-smart-factory", "tags": ["Third Party Advisory"], "source": "cve-coordination@incibe.es"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "cve-coordination@incibe.es", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially crafted SQL query to the \u2018email\u2019 parameter on the \u2018RequestPasswordChange\u2019 endpoint."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en la versi\u00f3n 1.0 de QPLANT SF de TAI Smart Factory. La explotaci\u00f3n de esta vulnerabilidad podr\u00eda permitir a un atacante remoto recuperar toda la informaci\u00f3n de la base de datos mediante el env\u00edo de una consulta SQL especialmente manipulada al par\u00e1metro 'email' en el punto de conexi\u00f3n 'RequestPasswordChange'."}], "lastModified": "2024-10-17T18:09:40.537", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:taismartfactory:qplant_sf:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B765068C-1F65-4727-A739-3204A4811C0E"}], "operator": "OR"}]}], "sourceIdentifier": "cve-coordination@incibe.es"}