CVE-2023-35066 – This SQL injection vulnerability in Infodrom So... (How to Fix)

📋 TL;DR

This SQL injection vulnerability in Infodrom Software's E-Invoice Approval System allows attackers to execute arbitrary SQL commands through unvalidated user input. All organizations using versions before v.20230701 are affected, potentially exposing sensitive invoice data and system control.

💻 Affected Systems

Products:

Infodrom Software E-Invoice Approval System

Versions: All versions before v.20230701

Operating Systems: Any OS running the application

Default Config Vulnerable: ⚠️ Yes

Notes: All deployments with vulnerable versions are affected regardless of configuration

📦 What is this software?

E Invoice Approval System by Infodrom

View all CVEs affecting E Invoice Approval System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, system takeover, and lateral movement to connected systems

🟠

Likely Case

Unauthorized access to invoice data, financial information disclosure, and potential data manipulation

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-critical data

🌐 Internet-Facing: HIGH - Web applications with SQL injection are prime targets for automated attacks

🏢 Internal Only: MEDIUM - Internal attackers could still exploit but requires network access

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

SQL injection typically requires minimal technical skill with widely available tools

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: v.20230701

Vendor Advisory: https://www.usom.gov.tr/bildirim/tr-23-0419

Restart Required: Yes

Instructions:

1. Download v.20230701 from vendor
2. Backup current installation and database
3. Stop application services
4. Apply update following vendor documentation
5. Restart services and verify functionality

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy WAF with SQL injection rules to block malicious requests

Database Permission Reduction

all

Limit application database user to minimum required permissions

REVOKE ALL PRIVILEGES ON database.* FROM 'app_user'@'%';
GRANT SELECT, INSERT, UPDATE ON specific_tables TO 'app_user'@'%';

🧯 If You Can't Patch

Isolate the system in a separate network segment with strict access controls
Implement comprehensive input validation and parameterized queries in custom code

🔍 How to Verify

Check if Vulnerable:

Check application version in admin panel or configuration files

Check Version:

Check application web interface or config files for version information

Verify Fix Applied:

Confirm version is v.20230701 or later and test SQL injection attempts are blocked

📡 Detection & Monitoring

Log Indicators:

Unusual SQL error messages in application logs
Multiple failed login attempts with SQL syntax
Long or unusual query strings in access logs

Network Indicators:

HTTP requests containing SQL keywords (SELECT, UNION, DROP, etc.)
Unusual database connection patterns

SIEM Query:

source="web_logs" AND ("SELECT" OR "UNION" OR "DROP TABLE") AND status="200"

📊 Metadata

CVE ID: CVE-2023-35066

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-89

Published: July 25, 2023

Last Updated: November 21, 2024

🔗 References

https://www.usom.gov.tr/bildirim/tr-23-0419 Third Party Advisory
https://www.usom.gov.tr/bildirim/tr-23-0419 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-35066, you might also want to check these: