CVE-2022-48586

Vulnerability

A SQL injection vulnerability exists in the json walker feature (also referred to as the admin brand portal feature) of ScienceLogic SL1. The application takes unsanitized user-controlled input and passes it directly to a SQL query, allowing for the injection of arbitrary SQL. Affected versions include ScienceLogic SL1 up to and including version 11.1.2 [1].

Exploitation

An attacker with network access to the ScienceLogic SL1 instance can send crafted input to the vulnerable endpoint. No authentication is explicitly required, though the feature may be part of the administrative interface. The attacker can inject SQL commands that are executed against the database.

Impact

Successful exploitation allows the attacker to execute arbitrary SQL statements. This can lead to unauthorized disclosure of sensitive data, modification or deletion of database records, and potential escalation to full database compromise.

Mitigation

ScienceLogic recommends updating to the latest version of SL1. The advisory does not specify a patched version number; users should contact ScienceLogic support for the appropriate update [1]. No workarounds are provided.