CVE-2016-4999

high-risk
Published 2016-08-05

SQL injection vulnerability in the getStringParameterSQL method in main/java/org/dashbuilder/dataprovider/sql/dialect/DefaultDialect.java in Dashbuilder before 0.6.0.Beta1 allows remote attackers to execute arbitrary SQL commands via a data set lookup filter in the (1) Data Set Authoring or (2) Displayer editor UI.

Do I need to act?

~
7.0% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (14)

Dashbuilder
Jboss Bpm Suite
Jboss Bpm Suite
Jboss Bpm Suite
Jboss Bpm Suite
Jboss Bpm Suite

Affected Vendors

Redhat

References (12)

Third Party Advisory http://www.securityfocus.com/bid/91795
Vendor Advisory https://access.redhat.com/errata/RHSA-2016:1428
Vendor Advisory https://access.redhat.com/errata/RHSA-2016:1429
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1349990
Third Party Advisory https://github.com/dashbuilder/dashbuilder/commit/8574899e3b6455547b534f570b2330...
Permissions Required https://issues.jboss.org/browse/DASHBUILDE-113
Third Party Advisory http://www.securityfocus.com/bid/91795
Vendor Advisory https://access.redhat.com/errata/RHSA-2016:1428
Vendor Advisory https://access.redhat.com/errata/RHSA-2016:1429
Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1349990
Third Party Advisory https://github.com/dashbuilder/dashbuilder/commit/8574899e3b6455547b534f570b2330...
Permissions Required https://issues.jboss.org/browse/DASHBUILDE-113
59
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 9/34 · Low
Exposure 18/34 · Moderate