SQLi in Magarsus Consultancy's SSO

The SQL Injection vulnerability in Magarsus Consultancy SSO poses a significant risk to organizations using this software. An attacker could exploit this flaw to bypass authentication mechanisms and gain unauthorized access to the underlying database. This could lead to the exfiltration of sensitive data, including user credentials, configuration details, and potentially other confidential information. Successful exploitation could also allow for modification or deletion of data within the database, leading to disruption of services and potential data loss. The impact is particularly severe given the critical CVSS score of 9.8, indicating a high likelihood of exploitation and significant potential damage.

Organizations utilizing Magarsus Consultancy SSO versions 1.0 and 1.1, particularly those with sensitive data stored in the SSO database, are at significant risk. Shared hosting environments where multiple users share the same SSO instance are also particularly vulnerable.

1. 2024-06-26Disclosure

   disclosure

1. 已保留2024-04-26
2. 发布日期2024-06-26
3. 修改日期2024-08-01
4. EPSS 更新日期2026-04-02

The primary mitigation for CVE-2024-4228 is to immediately upgrade to version 1.1 of Magarsus Consultancy SSO, which contains the fix. If upgrading is not immediately feasible, consider implementing temporary workarounds such as input validation and parameterized queries to reduce the attack surface. While not a complete solution, these measures can help to prevent exploitation. Review and restrict database user permissions to limit the potential impact of a successful attack. After upgrading, confirm the vulnerability is resolved by attempting a SQL injection attack on the affected endpoints and verifying that the input is properly sanitized.