Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Database bypassing any permissions in Metabase via SQlite attach
Vulnerability Description
Metabase is an open source business intelligence and analytics application. SQLite has an FDW-like feature called `ATTACH DATABASE`, which allows connecting multiple SQLite databases via the initial connection. If the attacker has SQL permissions to at least one SQLite database, then it can attach this database to a second database, and then it can query across all the tables. To be able to do that the attacker also needs to know the file path to the second database. Users are advised to upgrade as soon as possible. If you're unable to upgrade, you can modify your SQLIte connection strings to contain the url argument `?limit_attached=0`, which will disallow making connections to other SQLite databases. Only users making use of SQLite are affected.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
资源在另一范围的外部可控制索引
Vulnerability Title
Metabase 安全漏洞
Vulnerability Description
Metabase是美国Metabase公司的一个开源数据分析平台。 Metabase 存在安全漏洞,该漏洞源于SQLite 有一个类似于 FDW 的功能,称为ATTACH DATABASE,它允许通过初始连接连接多个 SQLite 数据库。 如果攻击者对至少一个 SQLite 数据库拥有 SQL 权限,那么它可以将此数据库附加到第二个数据库,然后它可以跨所有表进行查询。 为了能够做到这一点,攻击者还需要知道第二个数据库的文件路径。以下产品和版本受到影响:x.42 - x.42.3、x.41 - x.41.
CVSS Information
N/A
Vulnerability Type
N/A