CVE-2025-50465

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-50465
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the TestDefinitionDAO interface. The testPlatform parameter can be used to build a SQL query.

7.1 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://gist.github.com/javadk/c23cc3276f3fb5587b0f4345d7a71a7f Third Party Advisory
https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3515 Product
https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3517 Product
Configurations

Configuration 1 (hide)

cpe:2.3:a:open-metadata:openmetadata:*:*:*:*:*:*:*:*
History

11 Aug 2025, 14:48

Type Values Removed Values Added
First Time Open-metadata
Open-metadata openmetadata
Summary
  • (es) OpenMetadata &lt;=1.4.4 es vulnerable a la inyección SQL. Un atacante puede extraer información de la base de datos en la función listCount de la interfaz TestDefinitionDAO. El parámetro testPlatform puede usarse para crear una consulta SQL.
CPE cpe:2.3:a:open-metadata:openmetadata:*:*:*:*:*:*:*:*
References () https://gist.github.com/javadk/c23cc3276f3fb5587b0f4345d7a71a7f - () https://gist.github.com/javadk/c23cc3276f3fb5587b0f4345d7a71a7f - Third Party Advisory
References () https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3515 - () https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3515 - Product
References () https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3517 - () https://github.com/open-metadata/OpenMetadata/blob/4b9145a9da7ed95b7f868ab9f351e3d759af47d7/openmetadata-service/src/main/java/org/openmetadata/service/jdbi3/CollectionDAO.java#L3517 - Product

08 Aug 2025, 19:15

Type Values Removed Values Added
CWE CWE-89

08 Aug 2025, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-08-08 17:15

Updated : 2025-08-11 14:48

NVD link : CVE-2025-50465

Mitre link : CVE-2025-50465

CVE.ORG link : CVE-2025-50465

JSON object : View

Products Affected

open-metadata

  • openmetadata
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')