CVE-2026-7023

MEDIUM

ByteDance coze-studio databaseTool database_impl.go ExecuteSQL sql injection

Title source: cna

Description

A vulnerability was detected in ByteDance coze-studio up to 0.5.1. Affected by this vulnerability is the function ExecuteSQL of the file backend/domain/memory/database/service/database_impl.go of the component databaseTool. Performing a manipulation results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

References (4)

Core 4

Core References

Vdb Entry, Technical Description vdb-entry technical-description

VDB-359602 | ByteDance coze-studio databaseTool database_impl.go ExecuteSQL sql injection

https://vuldb.com/vuln/359602

Signature, Permissions Required signature permissions-required

VDB-359602 | CTI Indicators (IOB, IOC, TTP, IOA)

https://vuldb.com/vuln/359602/cti

Third Party Advisory third-party-advisory

Submit #797644 | coze-dev coze-studio <= 0.5.1 SQL Injection (CWE-89) / Improper Input Validation (CWE-20)

https://vuldb.com/submit/797644

Exploit exploit

https://gist.github.com/YLChen-007/272fe62967b42259ed767d109615030a

Scores

CVSS v3 6.3

EPSS 0.0037

EPSS Percentile 28.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-74 CWE-89

Status published

Products (3)

ByteDance/coze-studio 0.5.0

ByteDance/coze-studio 0.5.1

coze/coze_studio < 0.5.1

Published Apr 26, 2026

Tracked Since Apr 26, 2026