CVE-2025-53648
Homebrew Análise e mitigação de vulnerabilidades

Visão geral

CVE-2025-53648 is a SQL injection vulnerability (CWE-89) in the Apache Gravitino UI, classified as an SQL misconfiguration, that allows authenticated low-privileged users to read or truncate files on the affected system. It affects Apache Gravitino versions 0.5.0 through below 1.0.0 (specifically the org.apache.gravitino:catalog-jdbc-common component). The vulnerability was publicly disclosed on June 30, 2026, via the Apache security mailing list and oss-security. It carries a CVSS v3.1 base score of 5.4 (Medium) (GitHub Advisory, Apache Advisory).

Detalhes técnicos

The root cause is improper neutralization of special elements in SQL commands (CWE-89), described as an "SQL misconfiguration" in the Gravitino UI component. An authenticated attacker with low privileges can craft malicious input that is incorporated into SQL queries without adequate sanitization, enabling file read or truncation operations on the underlying system — consistent with SQL features such as LOAD DATA INFILE or SELECT INTO OUTFILE in certain database backends. The attack vector is network-accessible, requires no user interaction, and has low attack complexity, but does require a valid (low-privileged) account. No public proof-of-concept code has been identified at this time (oss-security, GitHub Advisory).

Impacto

Successful exploitation allows a malicious authenticated user to read arbitrary files accessible to the database process or truncate files, resulting in limited confidentiality and integrity impacts. Availability is not directly impacted per the CVSS scoring, though file truncation could cause data loss or service disruption for dependent components. The scope is unchanged, meaning the impact is confined to the vulnerable Gravitino component and its underlying file system access (GitHub Advisory, oss-security).

Mitigação e soluções alternativas

Apache has released version 1.0.0 of Gravitino, which fixes this vulnerability. All users running versions 0.5.0 through below 1.0.0 are strongly recommended to upgrade to version 1.0.0 immediately. No specific configuration-based workarounds have been published; upgrading is the primary remediation (Apache Advisory, oss-security).

Reações da comunidade

The vulnerability was disclosed by Jerry Shao via the oss-security mailing list on June 30, 2026, crediting the GreatBook VulTeam as the finders and reporters. The GitHub Advisory Database has classified it as "Moderate" severity. No significant broader media coverage or notable researcher commentary beyond the initial disclosure has been identified (oss-security, GitHub Advisory).

Recursos adicionais


OrigemEste relatório foi gerado usando IA

Relacionado Homebrew Vulnerabilidades:

CVE ID

Gravidade

Pontuação

Tecnologias

Nome do componente

Exploração do CISA KEV

Tem correção

Data de publicação

CVE-2026-14241CRITICAL9.8
  • NixOS logoNixOS
  • cpe:2.3:a:mozilla:firefox
NãoNãoJun 30, 2026
CVE-2026-58016CRITICAL9.1
  • NixOS logoNixOS
  • glib2
NãoSimJun 30, 2026
CVE-2026-58014HIGH8.6
  • NixOS logoNixOS
  • glib2
NãoSimJun 30, 2026
CVE-2026-58015HIGH7.5
  • NixOS logoNixOS
  • glib2-fam
NãoSimJun 30, 2026
CVE-2025-53648MEDIUM5.4
  • Homebrew logoHomebrew
  • gravitino
NãoSimJun 30, 2026

Avaliação de vulnerabilidade gratuita

Compare sua postura de segurança na nuvem

Avalie suas práticas de segurança na nuvem em 9 domínios de segurança para comparar seu nível de risco e identificar lacunas em suas defesas.

Solicitar avaliação

Marque uma demonstração personalizada

Pronto para ver a Wiz em ação?

"A melhor experiência do usuário que eu já vi, fornece visibilidade total para cargas de trabalho na nuvem."
David EstlickCISO
"A Wiz fornece um único painel de vidro para ver o que está acontecendo em nossos ambientes de nuvem."
Adão FletcherDiretor de Segurança
"Sabemos que se a Wiz identifica algo como crítico, na verdade é."
Greg PoniatowskiChefe de Gerenciamento de Ameaças e Vulnerabilidades