Cyber Resilience

CVE-2024-7099

CriticalPublic PoC

Published: 13 October 2024

Published
13 October 2024
Modified
30 July 2025
KEV Added
Patch
CVSS Score v3 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0014 33.8th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-7099 is a critical-severity SQL Injection (CWE-89) vulnerability in Qanything Qanything. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 33.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

This vulnerability is AI-related — categorised as Enterprise AI Assistants; in the Other ATLAS/OWASP Terms risk domain; MITRE ATLAS techniques in scope: Hardware (AML.T0010.000), Adversarial AI Attack Implementations (AML.T0016.000), Infer Training Data Membership (AML.T0024.000).

EU & UK References

Vulnerability details

netease-youdao/qanything version 1.4.1 contains a vulnerability where unsafe data obtained from user input is concatenated in SQL queries, leading to SQL injection. The affected functions include `get_knowledge_base_name`, `from_status_to_status`, `delete_files`, and `get_file_by_status`. An attacker can exploit this vulnerability to execute arbitrary…

more

SQL queries, potentially stealing information from the database. The issue is fixed in version 1.4.2.

CWE(s)

AI Security AnalysisAI

AI Category
Enterprise AI Assistants
Risk Domain
Other ATLAS/OWASP Terms
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
QAnything (netease-youdao/qanything) is an open-source AI-powered knowledge base platform using RAG and LLMs for enterprise-like Q&A assistants, listed under AI/ML bug bounties on Huntr.

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1213.006 Databases Collection
Adversaries may leverage databases to mine valuable information.
Why these techniques?

SQL injection vulnerability enables exploitation of public-facing applications (T1190) via arbitrary SQL query execution and facilitates data collection from databases (T1213.006) by allowing unauthorized access to database contents.

MITRE ATLAS TechniquesAI

MITRE ATLAS techniques

AML.T0010.000: HardwareAML.T0016.000: Adversarial AI Attack ImplementationsAML.T0024.000: Infer Training Data MembershipAML.T0048.000: Financial Harm

Affected Assets

qanything
qanything
1.4.1

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-89

Penetration testing uses SQL injection payloads against database interfaces, identifying and supporting fixes for SQL injection weaknesses.

addresses: CWE-89

Validates query inputs to prevent SQL syntax or command manipulation.

References