CVE Vulnerability

CVE-2022-21687

gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read vulnerability. The attacker must have access to the target host or trick an administrator into executing a malicious gh-ost command on a host running gh-ost, plus network access from host running gh-ost to the attack's malicious MySQL server. The `-database` parameter does not properly sanitize user input which can lead to arbitrary file reads.

4.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

Scope

6.5 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://github.com/github/gh-ost/commit/a91ab042de013cfd8fbb633763438932d9080d8f Patch Third Party Advisory
https://github.com/github/gh-ost/security/advisories/GHSA-rrp4-2xx3-mv29 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:github:gh-ost:*:*:*:*:*:*:*:*
Information

Published : 2022-02-01 12:15

Updated : 2022-02-04 05:09

NVD link : CVE-2022-21687

Mitre link : CVE-2022-21687

Products Affected
No products.
CWE
CWE-20