8.3

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-10141

GHSA ID

GHSA-c7fc-cm7p-92r2

EPSS Score

0.74689%

CWE

CWE-89

Published

5/24/2022

Updated

9/27/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2019-10141

CVE-2019-10141: Openstack ironic-inspector has SQL injection vulnerability in node_cache

A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a server reporting inspection results (by a POST to the /v1/continue endpoint). Because the API is unauthenticated, the flaw could be exploited by an attacker with access to the network on which ironic-inspector is listening. Because of how ironic-inspector uses the query results, it is unlikely that data could be obtained. However, the attacker could pass malicious data and create a denial of service.

(GitHub Advisory)

8.3

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-10141

GHSA ID

GHSA-c7fc-cm7p-92r2

EPSS Score

0.74689%

CWE

CWE-89

Published

5/24/2022

Updated

9/27/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
ironic-inspector	pip	< 5.0.2	5.0.2
ironic-inspector	pip	>= 5.1.0, < 6.0.3	6.0.3
ironic-inspector	pip	>= 6.1.0, < 7.2.4	7.2.4
ironic-inspector	pip	>= 8.0.0, < 8.0.3	8.0.3
ironic-inspector	pip	>= 8.1.0, < 8.2.1	8.2.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability description explicitly names node_cache.find_node() as the vulnerable function. The commit diff shows this function previously built SQL queries via string concatenation (using 'text(stmt)') with user-controlled 'name' and 'value' parameters. The added test case 'test_input_filtering' specifically checks for SQL injection patterns, and the commit message states the fix was to replace raw SQL with SQLAlchemy's parameterized query builder.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility w*s *oun* in op*nst**k-ironi*-insp**tor *ll v*rsions *x*lu*in* *.*.*, *.*.*, *.*.*, *.*.* *n* *.*.*. * SQL-inj**tion vuln*r**ility w*s *oun* in op*nst**k-ironi*-insp**tor's no**_*****.*in*_no**(). T*is *un*tion m*k*s * SQL qu*ry usin*

Reasoning

T** vuln*r**ility **s*ription *xpli*itly n*m*s no**_*****.*in*_no**() *s t** vuln*r**l* *un*tion. T** *ommit *i** s*ows t*is *un*tion pr*viously *uilt SQL qu*ri*s vi* strin* *on**t*n*tion (usin* 't*xt(stmt)') wit* us*r-*ontroll** 'n*m*' *n* 'v*lu*' p

8.3

Basic Information

Concerned about an active attack path?

CVE-2019-10141: Openstack ironic-inspector has SQL injection vulnerability in node_cache

8.3

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI