CVE-2024-49203: SQL/HQL Injection in Querydsl and OpenFeign Querydsl

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability Name: Querydsl and OpenFeign Querydsl Java Library Vulnerability Permits SQL/HQL Injection 2. CVE ID: CVE-2024-49203 3. Discoverer: CSIRT.SK 4. Affected System Versions: - querydsl-jpa - 5.1.0 - querydsl-apt - 5.1.0 - hibernate-core - 6.1.1.Final - jakarta.persistence-api - 3.1.0 - postgresql - 42.7.4 - OpenFeign querydsl - 6.8 5. Description: - The vulnerability exists in the Querydsl and OpenFeign Querydsl libraries, stemming from insufficient sanitization of user input, which is processed via the function. - The function is used to sort results in database queries. When the variable is generated from user input, it can be exploited to execute HQL queries. 6. Example Code: - If the value is provided by the user, the application becomes vulnerable. 7. Impact: - Information disclosure - Denial of service 8. Recommendation: - If developing Java web applications using the Querydsl (or OpenFeign Querydsl) library and utilizing the method to process user input, it is recommended to implement additional input validation and sanitization as part of secure coding practices. This information helps in understanding the nature, scope of impact, and mitigation strategies for the vulnerability.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-49203: SQL/HQL Injection in Querydsl and OpenFeign Querydsl