Cyber Resilience

CVE-2024-57606

HighPublic PoC

Published: 07 February 2025

Published
07 February 2025
Modified
29 September 2025
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.0034 57.2th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-57606 is a high-severity SQL Injection (CWE-89) vulnerability in Guojusoft Jeecgboot. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 42.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2024-57606 is a SQL injection vulnerability (CWE-89) affecting Beijing Guoju Information Technology Co., Ltd's JeecgBoot version 3.7.2. The flaw resides in the getTotalData component, which a remote attacker can exploit to obtain sensitive information from the underlying database.

The vulnerability has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N), indicating it is exploitable over the network with low complexity, requiring no privileges, user interaction, or scope changes. An unauthenticated remote attacker can inject malicious SQL payloads into the getTotalData component to extract sensitive data, such as database contents, without impacting integrity or availability.

Mitigation details are available in the project's GitHub issue at https://github.com/jeecgboot/JeecgBoot/issues/7665, which serves as the primary advisory reference for this CVE.

EU & UK References

Vulnerability details

SQL injection vulnerability in Beijing Guoju Information Technology Co., Ltd JeecgBoot v.3.7.2 allows a remote attacker to obtain sensitive information via the getTotalData component.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1213.006 Databases Collection
Adversaries may leverage databases to mine valuable information.
Why these techniques?

SQL injection in public-facing web application (JeecgBoot) enables exploitation (T1190) for unauthorized access to databases to collect sensitive information such as user credentials (T1213.006).

MITRE ATLAS TechniquesAI

MITRE ATLAS techniques

AML.T0022AML.T0023AML.T0034: Cost Harvesting

CVEs Like This One

CVE-2019-25537Shared CWE-89
CVE-2019-25366Shared CWE-89
CVE-2019-25496Shared CWE-89
CVE-2026-1475Shared CWE-89
CVE-2026-26990Shared CWE-89
CVE-2026-44047Shared CWE-89
CVE-2025-12865Shared CWE-89
CVE-2024-11135Shared CWE-89
CVE-2019-25491Shared CWE-89
CVE-2024-13369Shared CWE-89

Affected Assets

guojusoft
jeecgboot
3.7.2

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly prevents SQL injection attacks like CVE-2024-57606 by validating and sanitizing inputs to the vulnerable getTotalData component.

prevent

Remediates the specific SQL injection flaw in JeecgBoot v3.7.2 through timely patching or code fixes as referenced in the advisory.

preventdetect

Boundary protection with web application firewalls inspects and blocks malicious SQL payloads targeting the unauthenticated remote endpoint.

References