CVE-2022-48594

Vulnerability

A SQL injection vulnerability exists in the "ticket watchers email" feature of ScienceLogic SL1. The application takes unsanitized user‑controlled input and passes it directly to a SQL query, allowing the injection of arbitrary SQL statements. This affects ScienceLogic SL1 version 11.1.2 and earlier [1].

Exploitation

An attacker with network access to the SL1 web interface can send crafted input to the ticket watchers email feature. No authentication is explicitly mentioned as required, but the feature is likely accessible to authenticated users. The attacker injects SQL statements into the input field, which are then executed against the database [1].

Impact

Successful exploitation allows an attacker to execute arbitrary SQL queries against the underlying database. This could lead to unauthorized access to sensitive data, modification of database content, or potential escalation of privileges, depending on the database user permissions [1].

Mitigation

The vendor has been notified and a fix is available by updating to the latest version of ScienceLogic SL1. It is recommended to upgrade to a version later than 11.1.2 to remediate the vulnerability. No official advisory has been published by the vendor as of the disclosure date [1].