Login Sign Up

CVE-2023-41542

9.8 CRITICAL
SQL Injection

📋 TL;DR

This SQL injection vulnerability in jeecg-boot version 3.5.3 allows remote attackers to execute arbitrary SQL commands via the jmreport/qurestSql component. Attackers can escalate privileges, access sensitive data, and potentially take control of affected systems. Organizations using jeecg-boot 3.5.3 are affected.

💻 Affected Systems

Products:
  • jeecg-boot
Versions: 3.5.3
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: The vulnerability exists in the jmreport/qurestSql component which handles SQL queries for reporting functionality.

📦 What is this software?

Jeecg Boot by Jeecg

View all CVEs affecting Jeecg Boot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with administrative access, data exfiltration, and potential lateral movement to other systems.

🟠

Likely Case

Privilege escalation leading to unauthorized data access and potential data manipulation.

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to non-critical data.

🌐 Internet-Facing: HIGH
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

SQL injection vulnerabilities are commonly exploited and public proof-of-concept details are available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.5.4 or later

Vendor Advisory: https://github.com/jeecgboot/jeecg-boot

Restart Required: Yes

Instructions:

1. Backup your current installation. 2. Update jeecg-boot to version 3.5.4 or later. 3. Restart the application server. 4. Verify the fix by testing the vulnerable endpoint.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation and parameterized queries for the jmreport/qurestSql endpoint

Implement prepared statements and input sanitization in the affected component

Network Access Control

all

Restrict access to the vulnerable endpoint using firewall rules or web application firewall

Configure firewall to block access to /jmreport/qurestSql endpoint from untrusted networks

🧯 If You Can't Patch

  • Implement a web application firewall (WAF) with SQL injection protection rules
  • Disable or restrict access to the jmreport/qurestSql component if not required

🔍 How to Verify

Check if Vulnerable:

Check if jeecg-boot version is 3.5.3 and test the /jmreport/qurestSql endpoint with SQL injection payloads

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Verify version is 3.5.4 or later and test that SQL injection attempts are properly blocked

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in application logs
  • Multiple failed login attempts followed by successful access
  • Access to sensitive database tables from unexpected sources

Network Indicators:

  • SQL syntax in HTTP POST requests to /jmreport/qurestSql
  • Unusual database connection patterns

SIEM Query:

source="application.logs" AND ("jmreport/qurestSql" AND ("UNION" OR "SELECT" OR "INSERT" OR "DELETE" OR "DROP"))

📊 Metadata

CVE ID: CVE-2023-41542
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: December 30, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-41542, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)