[hibernate-issues] [JIRA] (HHH-14077) CVE-2019-14900 SQL injection issue using JPA Criteria API

Gail Badner (JIRA) jira at hibernate.atlassian.net
Thu Jun 18 14:20:28 EDT 2020 

Gail Badner ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aabbef6b0-cce3-4556-9748-b721becb9c9a ) *created* an issue

Hibernate ORM ( https://hibernate.atlassian.net/browse/HHH?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 ) / Bug ( https://hibernate.atlassian.net/browse/HHH-14077?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 ) HHH-14077 ( https://hibernate.atlassian.net/browse/HHH-14077?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 ) CVE-2019-14900 SQL injection issue using JPA Criteria API ( https://hibernate.atlassian.net/browse/HHH-14077?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 )

Issue Type: Bug Affects Versions: 5.3.16, 5.4.17 Assignee: Gail Badner ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aabbef6b0-cce3-4556-9748-b721becb9c9a ) Components: query-criteria Created: 18/Jun/2020 11:20 AM Fix Versions: 5.5.0.Beta1, 5.3.18, 5.4.18 Priority: Blocker Reporter: Gail Badner ( https://hibernate.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3Aabbef6b0-cce3-4556-9748-b721becb9c9a )

A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further attacks.

( https://hibernate.atlassian.net/browse/HHH-14077#add-comment?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 ) Add Comment ( https://hibernate.atlassian.net/browse/HHH-14077#add-comment?atlOrigin=eyJpIjoiMzg0ZWZhMGE3YzcxNDZjNTgwYzIzMmViNzhkN2M4YzAiLCJwIjoiaiJ9 )

Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core&referrer=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495&ct=EmailNotificationLink&mt=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100129- sha1:b514962 )
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/hibernate-issues/attachments/20200618/eb724aa8/attachment.html

More information about the hibernate-issues mailing list