CVE-2024-57622

CVE-2024-57622 is a vulnerability in the exp_bin component of MonetDB Server version 11.49.1. Published on 2025-01-14, it enables attackers to trigger a Denial of Service (DoS) condition using crafted SQL statements. The issue is associated with CWE-89 (Improper Neutralization of Special Elements used in an SQL Command) and carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity due to its potential for significant availability impact.

Remote attackers can exploit this vulnerability over the network with low complexity and no authentication or user interaction required. Successful exploitation disrupts the availability of the MonetDB Server instance, potentially rendering it unresponsive to legitimate queries without affecting confidentiality or integrity.

Mitigation details are documented in the GitHub issue at https://github.com/MonetDB/MonetDB/issues/7434, which serves as the primary advisory reference for this CVE.