CVE-2022-48585: 
ScienceLogic SL1 Agent vulnerability analysis and mitigation

A SQL injection vulnerability (CVE-2022-48585) was discovered in the "admin brand portal" feature of ScienceLogic SL1 versions 11.1.2 and earlier. The vulnerability was identified on August 9, 2023, and allows attackers to exploit unsanitized user-controlled input that is passed directly to SQL queries (Securifera).

The vulnerability has been assigned a CVSS v3.1 score of 8.8 (High), with the following vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. This indicates that the vulnerability can be exploited over the network, requires low attack complexity, needs low privileges, and requires no user interaction. The impact affects confidentiality, integrity, and availability, all rated as high (Securifera).

The SQL injection vulnerability allows attackers to inject arbitrary SQL commands that are executed against the database, potentially leading to unauthorized access to sensitive data, modification of database contents, and compromise of the system's integrity (Securifera).

Users are advised to update to the latest version of ScienceLogic SL1 beyond version 11.1.2 to address this vulnerability (Securifera).

The disclosure process faced significant resistance from the vendor, who initially refused CVE issuance and disclosure. The vendor hired a law firm to manage the disclosure process, and their legal team strongly advised against disclosing to MITRE. Despite these challenges, the vulnerability was eventually publicly disclosed on August 9, 2023 (Securifera).