Vulnerability Details : CVE-2022-39362
Metabase is data visualization software. Prior to versions 0.44.5, 1.44.5, 0.43.7, 1.43.7, 0.42.6, 1.42.6, 0.41.9, and 1.41.9, unsaved SQL queries are auto-executed, which could pose a possible attack vector. This issue is patched in versions 0.44.5, 1.44.5, 0.43.7, 1.43.7, 0.42.6, 1.42.6, 0.41.9, and 1.41.9. Metabase no longer automatically executes ad-hoc native queries. Now the native editor shows the query and gives the user the option to manually run the query if they want.
Products affected by CVE-2022-39362
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
- cpe:2.3:a:metabase:metabase:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-39362
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 42 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-39362
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
8.8
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST | |
8.8
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
GitHub, Inc. |
CWE ids for CVE-2022-39362
-
The product's user interface does not warn the user before undertaking an unsafe action on behalf of that user. This makes it easier for attackers to trick users into inflicting damage to their system.Assigned by: security-advisories@github.com (Secondary)
References for CVE-2022-39362
-
https://github.com/metabase/metabase/commit/b7c6bb905a9187347cfc9035443b514713027a5c
Do not autorun ad-hoc native queries (#25675) (#25732) · metabase/metabase@b7c6bb9 · GitHubPatch;Third Party Advisory
-
https://github.com/metabase/metabase/security/advisories/GHSA-93wj-fgjg-r238
Arbitrary SQL execution from queryhash · Advisory · metabase/metabase · GitHubThird Party Advisory
Jump to