7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): None (N)
- Availability (A): None (N)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): None (N)
Activity log
- Created suggestion
Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query
Dgraph is an open source distributed GraphQL database. Prior to version 25.3.4, the `checkUserPassword` GraphQL query in Dgraph is vulnerable to DQL (Dgraph Query Language) injection. User-supplied password values are interpolated directly into a DQL `checkpwd()` query via `fmt.Sprintf` without any escaping or parameterization. An attacker can inject a password containing a double-quote character to break out of the DQL string literal and append arbitrary DQL query blocks. Version 25.3.4 patches the issue.
References
-
https://github.com/dgraph-io/dgraph/security/advisories/GHSA-q2m9-6jp9-c6mc x_refsource_CONFIRM
-
https://github.com/dgraph-io/dgraph/releases/tag/v25.3.4 x_refsource_MISC
Affected products
- ==< 25.3.4
Matching in nixpkgs
pkgs.dgraph
Fast, Distributed Graph DB
pkgs.coqPackages.dpdgraph
Build dependency graphs between Coq objects
pkgs.perlPackages.GDGraph
Graph Plotting Module for Perl 5
Package maintainers
-
@vbgl Vincent Laporte <Vincent.Laporte@gmail.com>
-
@sigma Yann Hodique <yann.hodique@gmail.com>
-
@sarahec Sarah Clark <seclark@nextquestion.net>