Cyber Resilience

CVE-2024-57630

HighPublic PoC

Published: 14 January 2025

Published
14 January 2025
Modified
10 April 2025
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0017 37.5th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-57630 is a high-severity SQL Injection (CWE-89) vulnerability in Monetdb Monetdb. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 37.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2024-57630 is a denial-of-service vulnerability in the exps_card component of MonetDB Server version 11.49.1. The flaw allows attackers to trigger a DoS condition through specially crafted SQL statements, as classified under CWE-89 (Improper Neutralization of Special Elements used in an SQL Command). It has a CVSS v3.1 base score of 7.5, reflecting high severity due to its network accessibility, low attack complexity, lack of required privileges or user interaction, and significant impact on availability without affecting confidentiality or integrity.

Remote attackers without authentication can exploit this vulnerability by sending malicious SQL statements to a vulnerable MonetDB Server instance. Successful exploitation results in a denial of service, potentially crashing the server or exhausting resources, thereby disrupting legitimate database operations.

Details on the issue, including potential patches or workarounds, are documented in the MonetDB GitHub repository at https://github.com/MonetDB/MonetDB/issues/7439. Security practitioners should monitor this issue for official remediation guidance from the vendor.

EU & UK References

Vulnerability details

An issue in the exps_card component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Remote unauthenticated exploitation of public-facing DB server via crafted SQL input directly enables application exploitation for endpoint DoS.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2024-57620Same product: Monetdb Monetdb
CVE-2024-57629Same product: Monetdb Monetdb
CVE-2024-57615Same product: Monetdb Monetdb
CVE-2024-57617Same product: Monetdb Monetdb
CVE-2024-57634Same product: Monetdb Monetdb
CVE-2024-57622Same product: Monetdb Monetdb
CVE-2024-57625Same product: Monetdb Monetdb
CVE-2024-57619Same product: Monetdb Monetdb
CVE-2024-57621Same product: Monetdb Monetdb
CVE-2024-57624Same product: Monetdb Monetdb

Affected Assets

monetdb
monetdb
11.49.1

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates CWE-89 SQL injection by validating and sanitizing crafted SQL statement inputs to the exps_card component, preventing DoS exploitation.

prevent

Addresses the specific flaw in MonetDB v11.49.1 by requiring timely remediation through vendor patches or updates as documented in the GitHub issue.

prevent

Implements denial-of-service protections to counter resource exhaustion or crashes triggered by malicious SQL statements in the vulnerable server.

References