CVE-2024-57629
Published: 14 January 2025
Summary
CVE-2024-57629 is a high-severity SQL Injection (CWE-89) vulnerability in Monetdb Monetdb. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 37.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly prevents DoS by validating and sanitizing crafted SQL statements targeting the tail_type component to ensure consistency with expected content.
Mitigates the specific vulnerability in MonetDB v11.49.1 by requiring timely flaw remediation through patching or upgrades.
Protects system availability by identifying, monitoring, and limiting resource consumption from malicious SQL-induced DoS attacks.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Direct remote exploitation of public-facing DB server via crafted SQL input (T1190) to trigger application-level DoS (T1499.004).
NVD Description
An issue in the tail_type component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Deeper analysisAI
CVE-2024-57629 is a vulnerability in the tail_type component of MonetDB Server version 11.49.1. It enables attackers to trigger a Denial of Service (DoS) condition through specially crafted SQL statements. The issue has a CVSS v3.1 base score of 7.5, rated as High severity, with the vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating network accessibility, low attack complexity, no privileges or user interaction required, and a high impact on availability but no impact on confidentiality or integrity. It is associated with CWE-89 (Improper Neutralization of Special Elements used in an SQL Command).
Remote, unauthenticated attackers can exploit this vulnerability over the network by sending malicious SQL statements to a vulnerable MonetDB Server instance. Successful exploitation leads to a DoS, potentially crashing the server or consuming excessive resources, disrupting service availability for legitimate users.
Further details, including potential patches or workarounds, are documented in the advisory at https://github.com/MonetDB/MonetDB/issues/7472. Security practitioners should consult this GitHub issue for updates on remediation.
Details
- CWE(s)