CVE-2021-41765
Last modified
CVE-2021-41765 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated attackers to execute arbitrary SQL commands via the k parameter. This allows attackers to uncover the full contents of the ResourceSpace database, including user session cookies. EPSS estimates a 67.84% chance of exploitation in the next 30 days.
Description
A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated attackers to execute arbitrary SQL commands via the k parameter. This allows attackers to uncover the full contents of the ResourceSpace database, including user session cookies. An attacker who gets an admin user session cookie can use the session cookie to execute arbitrary code on the server.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Montala | Resourcespace | 9.5 |
| Montala | Resourcespace | 9.6 |
References
- http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.phpBroken Link, Vendor Advisory
- https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/Exploit, Third Party Advisory
- http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.phpBroken Link, Vendor Advisory
- https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-41765?
How severe is CVE-2021-41765?
How do I fix CVE-2021-41765?
Are you affected by CVE-2021-41765?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST