CVE-2024-22923 in Radiusinfo

Summary

by MITRE • 02/13/2024

SQL injection vulnerability in adv radius v.2.2.5 allows a local attacker to execute arbitrary code via a crafted script.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Analysis

by VulDB Data Team • 03/13/2025

The vulnerability identified as CVE-2024-22923 represents a critical sql injection flaw within the adv radius v.2.2.5 software component that poses significant security risks to affected systems. This vulnerability specifically affects the authentication and authorization mechanisms of the radius service, which is commonly used in network access control environments to manage user credentials and access permissions. The flaw enables local attackers to manipulate the underlying database queries through maliciously crafted inputs, potentially compromising the entire network access control infrastructure.

The technical implementation of this vulnerability stems from inadequate input validation and sanitization within the adv radius application's database interaction layer. When the software processes user authentication requests or configuration modifications, it fails to properly escape or parameterize user-supplied data before incorporating it into sql queries. This allows an attacker with local access to craft malicious script inputs that can manipulate the sql execution flow. The vulnerability manifests when the application directly concatenates user-provided parameters into sql statements without proper security measures such as prepared statements or proper input filtering mechanisms. According to the common weakness enumeration framework, this vulnerability maps to cwe-89 sql injection, which is classified as a high-risk weakness that can lead to complete system compromise when exploited.

The operational impact of CVE-2024-22923 extends beyond simple data theft, as it provides attackers with the capability to execute arbitrary code on the affected system. This arbitrary code execution capability enables threat actors to escalate privileges, install backdoors, modify network configurations, or even establish persistent access to the compromised environment. The local attack vector significantly reduces the complexity of exploitation since attackers do not require network access or sophisticated attack vectors to leverage this vulnerability. In enterprise environments where radius services are critical for network access control, this vulnerability can result in unauthorized network access, data exfiltration, and potential lateral movement throughout the organization's infrastructure. The attack technique aligns with the attack pattern taxonomy under the mitre attack framework, specifically relating to privilege escalation and persistence mechanisms that attackers commonly employ in network infrastructure compromise scenarios.

Mitigation strategies for this vulnerability must address both immediate remediation and long-term security hardening measures. The primary recommendation involves applying the vendor-supplied patches or updates that contain proper input validation and sql injection prevention mechanisms. Organizations should implement proper database query parameterization techniques and ensure that all user inputs are properly sanitized before being processed by the application. Network segmentation and access control measures should be enhanced to limit local access to critical systems running radius services. Additionally, implementing comprehensive monitoring and logging mechanisms around authentication and authorization activities can help detect potential exploitation attempts. Security teams should also conduct thorough vulnerability assessments to identify other similar sql injection vulnerabilities within the broader network infrastructure, as this type of weakness often indicates broader architectural security gaps that may require additional remediation efforts.

Reservation

01/11/2024

Disclosure

02/13/2024

Moderation

accepted

CPE

ready

EPSS

0.00668

KEV

no

Activities

very low

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!