CVE-2018-16803

Vulnerability

CIMTechniques CIMScan versions 6.x through 6.2 contain a critical vulnerability in the SOAP WSDL parser component. The parser fails to properly sanitize input, allowing an attacker to inject and execute arbitrary SQL code [1]. This affects the core scanning functionality that processes WSDL definitions.

Exploitation

An attacker can exploit this vulnerability remotely over the network without any authentication or user interaction. The SOAP WSDL parser is exposed in the application's default configuration. By sending a crafted SOAP request containing malicious SQL payloads in the WSDL data, the attacker triggers the SQL injection within the parser's database operations [1].

Impact

Successful exploitation leads to arbitrary SQL code execution within the context of the CIMScan application's database user. The attacker can read, modify, or delete database contents, potentially gaining complete control over the underlying information system. The Department of Defense assessed this as a critical severity issue (CVSS 9–10) [1]. Full compromise of the website and its hosted data is possible.

Mitigation

The vendor rapidly mitigated the vulnerability after disclosure to the DoD Vulnerability Disclosure Program [1]. However, the specific patched version is not disclosed in the available references. Users are advised to contact CIMTechniques for patch availability and to apply any security updates immediately. No workaround information is provided. The vulnerability is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog as of the publication date.