CVE-2012-0805

Multiple SQL injection vulnerabilities in SQLAlchemy before 0.7.0b4, as used in Keystone, allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset keyword to the select function, or unspecified vectors to the (3) select.limit or (4) select.offset function.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://rhn.redhat.com/errata/RHSA-2012-0369.html
http://secunia.com/advisories/48327	Vendor Advisory
http://secunia.com/advisories/48328	Vendor Advisory
http://secunia.com/advisories/48771	Vendor Advisory
http://www.debian.org/security/2012/dsa-2449
http://www.mandriva.com/security/advisories?name=MDVSA-2012:059
http://www.sqlalchemy.org/changelog/CHANGES_0_7_0
http://www.sqlalchemy.org/trac/changeset/852b6a1a87e7/	Exploit Patch
https://bugs.launchpad.net/keystone/+bug/918608
https://exchange.xforce.ibmcloud.com/vulnerabilities/73756

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sqlalchemy:sqlalchemy::b3::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta1::::::
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta2::::::
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta3::::::
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.1:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.2:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.3:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.4:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.5:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.6:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.7:::::::*
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.7.0:b1::::::
	cpe:2.3:a:sqlalchemy:sqlalchemy:0.7.0:b2::::::

History

No history.

Information

Published : 2012-06-05 22:55

Updated : 2023-12-10 11:16

NVD link : CVE-2012-0805

Mitre link : CVE-2012-0805

CVE.ORG link : CVE-2012-0805

JSON object : View

Products Affected

sqlalchemy

sqlalchemy

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2012-0805", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-06-05T22:55:08.077", "references": [{"url": "http://rhn.redhat.com/errata/RHSA-2012-0369.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/48327", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/48328", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/48771", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2012/dsa-2449", "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2012:059", "source": "secalert@redhat.com"}, {"url": "http://www.sqlalchemy.org/changelog/CHANGES_0_7_0", "source": "secalert@redhat.com"}, {"url": "http://www.sqlalchemy.org/trac/changeset/852b6a1a87e7/", "tags": ["Exploit", "Patch"], "source": "secalert@redhat.com"}, {"url": "https://bugs.launchpad.net/keystone/+bug/918608", "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73756", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in SQLAlchemy before 0.7.0b4, as used in Keystone, allow remote attackers to execute arbitrary SQL commands via the (1) limit or (2) offset keyword to the select function, or unspecified vectors to the (3) select.limit or (4) select.offset function."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en SQLAlchemy antes v0.7.0b4, tal y como se usa en Keystone, permite a atacantes remotos ejecutar comandos SQL a trav\u00e9s de las palabras clave (1) limit (l\u00edmite) o (2) offset (desplazamiento) a la funci\u00f3n de select (selecci\u00f3n), o de vectores no especificados a las funciones (3) select.limit o (4) select.offset."}], "lastModified": "2018-01-18T02:29:07.507", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:*:b3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B32A5D4-162C-4654-B6E7-E8D271E88671", "versionEndIncluding": "0.7.0"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94518B16-2C66-4780-AB6A-5820E5B42541"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAFCDB6C-3EFA-48F1-97EF-556164009DAD"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17B3E248-DC0A-4D88-A10D-68536680BDCF"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.0:beta3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B19B128B-2964-4D95-BC12-CEB58798B197"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AB122B6-95A7-46EB-82B7-7E15A609912B"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D56A8DE1-2D45-42A7-9A20-1B439AD2C4F6"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F19F24F-382E-46D5-B480-BB8B9A1AC478"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD66FBB8-8F2C-4CE8-9037-4957012E6130"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "207C9A7C-2F48-477C-ABAE-C8B16163F1F4"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A2B6833-08D0-4BA6-BF53-667761708781"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.6.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9ECF613D-1500-4675-A696-D5E97E39D490"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.7.0:b1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A77D2681-00DE-49A1-AEF9-D0B824C5E554"}, {"criteria": "cpe:2.3:a:sqlalchemy:sqlalchemy:0.7.0:b2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEB7B147-FD30-45C2-8C85-AD3E59305B2B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}