CVE-2025-3011
Published: 31 March 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-3011 is a SQL injection vulnerability (CWE-89) in SOOP-CLM from PiExtract. Published on 2025-03-31, it allows unauthenticated remote attackers to inject arbitrary SQL commands, enabling them to read, modify, and delete database contents. The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity due to its network accessibility, low attack complexity, and lack of required privileges or user interaction.
Unauthenticated remote attackers can exploit this vulnerability over the network without privileges. Exploitation enables high-impact outcomes, including unauthorized access to sensitive data (high confidentiality impact), alteration of database records (high integrity impact), and potential disruption of services (high availability impact), effectively compromising the entire database.
Advisories from TWCERT/CC provide further details on this vulnerability, available at https://www.twcert.org.tw/en/cp-139-10049-394bd-2.html and https://www.twcert.org.tw/tw/cp-132-10048-d690c-1.html. Security practitioners should consult these for recommended mitigations and patches.
Details
- CWE(s)
MITRE ATT&CK Enterprise Techniques
Why these techniques?
SQL injection vulnerability in a network-accessible application allowing unauthenticated remote exploitation directly maps to T1190 Exploit Public-Facing Application.