8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-12745

GHSA ID

GHSA-8gc2-vq6m-rwjw

EPSS Score

0.03268%

CWE

CWE-89

Published

12/26/2024

Updated

12/26/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-12745

CVE-2024-12745: Amazon Redshift Python Connector vulnerable to SQL Injection

Summary

A SQL injection in the Amazon Redshift Python Connector in version 2.1.4 allows a user to gain escalated privileges via schema injection in the get_schemas, get_tables, or get_columns Metadata APIs. Users should upgrade to the driver version 2.1.5 or revert to driver version 2.1.3.

Impact

A SQL injection is possible in the Amazon Redshift Python Connector, version 2.1.4, when leveraging metadata APIs to retrieve information about database schemas, tables, or columns.

Impacted versions: Amazon Redshift Python Connector version 2.1.4.

Patches

The issue described above has been addressed in the Amazon Redshift Python Connector, version 2.1.5.

The patch implemented in this version ensures that every metadata command input is sent to the Redshift server as part of a parameterized query, using either QUOTE_IDENT(string) or QUOTE_LITERAL(string). After processing all the inputs into quoted identifiers or literals, the metadata command is composed using these inputs and then executed on the server.

Workarounds

Use the previous version of the Amazon Redshift Python Connector, version 2.1.3.

References

If you have any questions or comments about this advisory we ask that you contact AWS/Amazon Security via our vulnerability reporting page [1] or directly via email to aws-security@amazon.com. Please do not create a public GitHub issue.

[1] Vulnerability reporting page: https://aws.amazon.com/security/vulnerability-reporting

(GitHub Advisory)

8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-12745

GHSA ID

GHSA-8gc2-vq6m-rwjw

EPSS Score

0.03268%

CWE

CWE-89

Published

12/26/2024

Updated

12/26/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
redshift_connector	pip	= 2.1.4	2.1.5

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The advisory explicitly names get_schemas, get_tables, and get_columns Metadata APIs as vulnerable entry points. These methods handle schema/table/column name parameters that were directly interpolated into SQL commands without proper parameterization in v2.1.4. The patch notes confirm these were fixed by adding QUOTE_IDENT/QUOTE_LITERAL sanitization, indicating they were previously building raw SQL strings with user inputs. While exact file paths aren't provided in disclosures, these methods are core metadata API functions that would logically reside in the Cursor class implementation (cursor.py) based on Python DB API patterns and Redshift connector architecture.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Summ*ry * SQL inj**tion in t** *m*zon R**s*i*t Pyt*on *onn**tor in v*rsion *.*.* *llows * us*r to **in *s**l*t** privil***s vi* s***m* inj**tion in t** **t_s***m*s, **t_t**l*s, or **t_*olumns M*t***t* *PIs. Us*rs s*oul* up*r*** to t** *riv*r v*rs

Reasoning

T** **visory *xpli*itly n*m*s **t_s***m*s, **t_t**l*s, *n* **t_*olumns M*t***t* *PIs *s vuln*r**l* *ntry points. T**s* m*t*o*s **n*l* s***m*/t**l*/*olumn n*m* p*r*m*t*rs t**t w*r* *ir**tly int*rpol*t** into SQL *omm*n*s wit*out prop*r p*r*m*t*riz*tio

8

Basic Information

Concerned about an active attack path?

CVE-2024-12745: Amazon Redshift Python Connector vulnerable to SQL Injection

Summary

Impact

Patches

Workarounds

References

8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI