CVE-2022-48585

Vulnerability

A SQL injection vulnerability exists in the “admin brand portal” feature of ScienceLogic SL1. The application takes unsanitized user-controlled input and passes it directly to a SQL query, allowing arbitrary SQL injection. This affects ScienceLogic SL1 versions up to and including 11.1.2 [1].

Exploitation

An attacker must have administrative access to the SL1 web interface to reach the “admin brand portal” feature. By supplying crafted input in the vulnerable field, the attacker can inject arbitrary SQL commands that are executed against the database. No additional authentication or user interaction is required beyond the initial admin session [1].

Impact

Successful exploitation allows the attacker to execute arbitrary SQL queries against the underlying database. This can lead to unauthorized reading, modification, or deletion of sensitive data, and potentially full compromise of the database server. The attacker operates with the privileges of the database user used by the application [1].

Mitigation

ScienceLogic recommends updating to the latest version of SL1. No specific patched version number is provided in the advisory, but upgrading to the most recent release addresses this vulnerability. No workarounds are documented [1].