Vulnerability Description
Doctrine DBAL 3.x before 3.1.4 allows SQL Injection. The escaping of offset and length inputs to the generation of a LIMIT clause was not probably cast to an integer, allowing SQL injection to take place if application developers passed unescaped user input to the DBAL QueryBuilder or any other API that ultimately uses the AbstractPlatform::modifyLimitQuery API.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Doctrine-Project | Database Abstraction Layer | >= 3.0.0, < 3.1.4 |
Related Weaknesses (CWE)
References
- https://github.com/doctrine/dbal/commit/9dcfa4cb6c03250b78a84737ba7ceb82f4b7ba4dPatchThird Party Advisory
- https://github.com/doctrine/dbal/releasesRelease NotesThird Party Advisory
- https://github.com/doctrine/dbal/security/advisories/GHSA-r7cj-8hjg-x622Third Party Advisory
- https://www.doctrine-project.org/2021/11/11/dbal3-vulnerability-fixed.htmlVendor Advisory
- https://github.com/doctrine/dbal/commit/9dcfa4cb6c03250b78a84737ba7ceb82f4b7ba4dPatchThird Party Advisory
- https://github.com/doctrine/dbal/releasesRelease NotesThird Party Advisory
- https://github.com/doctrine/dbal/security/advisories/GHSA-r7cj-8hjg-x622Third Party Advisory
- https://www.doctrine-project.org/2021/11/11/dbal3-vulnerability-fixed.htmlVendor Advisory
FAQ
What is CVE-2021-43608?
CVE-2021-43608 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Doctrine DBAL 3.x before 3.1.4 allows SQL Injection. The escaping of offset and length inputs to the generation of a LIMIT clause was not probably cast to an integer, allowing SQL injection to take pl...
How severe is CVE-2021-43608?
CVE-2021-43608 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-43608?
Check the references section above for vendor advisories and patch information. Affected products include: Doctrine-Project Database Abstraction Layer.