CVE-2020-9483

HIGH NUCLEI LAB

Apache Skywalking < 6.6.0 - SQL Injection

Title source: rule

Description

**Resolved** When use H2/MySQL/TiDB as Apache SkyWalking storage, the metadata query through GraphQL protocol, there is a SQL injection vulnerability, which allows to access unpexcted data. Apache SkyWalking 6.0.0 to 6.6.0, 7.0.0 H2/MySQL/TiDB storage implementations don't use the appropriate way to set SQL parameters.

Exploits (2)

nomisec WORKING POC 5 stars

by Neko-chanQwQ · poc

https://github.com/Neko-chanQwQ/CVE-2020-9483

View Code ZIP pw:eip

nomisec STUB 1 stars

by shanika04 · poc

https://github.com/shanika04/apache_skywalking

View Code ZIP pw:eip

Nuclei Templates (1)

SkyWalking SQLI

HIGHby pikpikcu

References (1)

[Third Party Advisory] https://github.com/apache/skywalking/pull/4639

Scores

CVSS v3 7.5

EPSS 0.9409

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Lab Environment

COMMUNITY

Community Lab

docker pull envoyproxy/envoy-alpine:latest

docker pull apache/skywalking-oap-server:latest

docker pull skywalking/ui:latest

docker pull zookeeper:3.5

docker pull elastic/elasticsearch:6.3.2

+3 more images

https://github.com/shanika04/apache_skywalking

https://github.com/Neko-chanQwQ/CVE-2020-9483

View in Library

Details

CWE

CWE-89

Status published

Products (2)

apache/skywalking 7.0.0

apache/skywalking 6.0.0 - 6.6.0

Published Jun 30, 2020

Tracked Since Feb 18, 2026