{"id":7620,"date":"2020-07-19T04:22:09","date_gmt":"2020-07-19T11:22:09","guid":{"rendered":"https:\/\/webdev.securin.xyz\/?p=7620"},"modified":"2023-07-10T14:48:56","modified_gmt":"2023-07-10T21:48:56","slug":"how-safe-are-database-applications","status":"publish","type":"post","link":"https:\/\/webdev.securin.xyz\/articles\/how-safe-are-database-applications\/","title":{"rendered":"How Safe are Databases?"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"7620\" class=\"elementor elementor-7620\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-6d85b3c6 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"6d85b3c6\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-1b12ce70\" data-id=\"1b12ce70\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-2a2b916f elementor-widget elementor-widget-text-editor\" data-id=\"2a2b916f\" data-element_type=\"widget\" data-settings=\"{&quot;ekit_we_effect_on&quot;:&quot;none&quot;}\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<blockquote><p><strong><span style=\"font-size: 22px;\">Cyber threat actors have been working hard during these pandemic times. The lockdown that came at the wake of this virus attack was sudden and unplanned. Systems, infrastructure, and sensitive information that was hitherto viewed within the secure walls of one\u2019s office is now being accessed through insecure connections and unsafe laptops from one\u2019s home.<\/span><\/strong><\/p><\/blockquote><p>The year 2020 will probably go down in history as the worst year for database breaches and we are only halfway through it.<\/p><p>We recently released a report series called \u2018Cyber Risk in Working Remotely\u2019 where we examined popular database solutions for vulnerabilities.<\/p><h3><strong>Key Findings<\/strong><\/h3><blockquote><ul><li><span style=\"font-family: times new roman,times,serif;\"><span style=\"font-size: 20px;\"><strong>79<\/strong>\u00a0CVEs are weaponized<\/span><\/span><\/li><li><span style=\"font-family: times new roman,times,serif;\"><span style=\"font-size: 20px;\"><strong>43<\/strong>\u00a0CVEs have RCE and Privilege Execution<\/span><\/span><\/li><li><span style=\"font-family: times new roman,times,serif;\"><span style=\"font-size: 20px;\">Scanners such as Nessus, Nexpose, Qualys have missed\u00a0<strong>5<\/strong>,\u00a0<strong>9<\/strong>, and\u00a0<strong>5<\/strong>\u00a0vulnerabilities, respectively.<\/span><\/span><\/li><\/ul><\/blockquote><h3><strong>Weaponization and Critical vulnerabilities<\/strong><\/h3><ul><li>We investigated a total of <span style=\"color: #ff0000;\"><strong>1449 <\/strong><\/span>vulnerabilities in database technologies. Out of these, <span style=\"color: #ff0000;\"><strong>79 <\/strong><\/span>are weaponized and <strong><span style=\"color: #ff0000;\">43 <\/span><\/strong>have RCE &amp; PE capabilities.<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 377px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/data1.png\" alt=\"\" \/><\/p><ul><li>Oracle has the maximum number vulnerabilities (<span style=\"color: #b22222;\"><strong>1286<\/strong><\/span>) that are yet to weaponized. It also ranks first among the applications with highest number of weaponized vulnerabilities (<span style=\"color: #b22222;\"><strong>78<\/strong><\/span>) and <span style=\"color: #b22222;\"><strong>29 <\/strong><\/span>CVEs can be executed remotely (RCE) while <span style=\"color: #b22222;\"><strong>27 <\/strong><\/span>CVEs have privilege execution.<\/li><li>Mysql stands second with <span style=\"color: #b22222;\"><strong>40 <\/strong><\/span>weaponized vulnerabilities <span style=\"color: #b22222;\"><strong>76 <\/strong><\/span>CVEs that are yet to weaponized.<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 610px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/data2.png\" alt=\"\" \/><\/p><ul><li>Where criticality of vulnerabilities are concerned, Oracle unsurprisingly leads the charge with <span style=\"color: #b22222;\"><strong>123 <\/strong><\/span>critical and <span style=\"color: #b22222;\"><strong>109 <\/strong><\/span>high priority vulnerabilities. They are followed by IBM with <span style=\"color: #b22222;\"><strong>21 <\/strong><\/span>critical and <span style=\"color: #b22222;\"><strong>65 <\/strong><\/span>high priority vulnerabilities.<\/li><\/ul><p><img decoding=\"async\" style=\"width: 550px; height: 530px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/data3.png\" alt=\"\" \/><\/p><p>\u00a0<\/p><p>Critical vulnerability that allowed the ransomware attack on MongoDB still exists today. This vulnerability was well exploited by Harak1r1 group in 2017 and data was auctioned for millions of dollars.<\/p><blockquote><ul><li><strong><span style=\"font-size: 22px;\"><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2019-9193\">CVE-2019-9193<\/a> in Postgresql allows arbitrary code in the context of the database\u2019s operating system user and it can be used to run system commands on Windows, Linux and macOS.<\/span><\/strong><\/li><li><strong><span style=\"font-size: 22px;\"><a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2014-1466\">CVE-2014-1466<\/a> is a SQL injection vulnerability in CSP MySQL User Manager 2.3 that allows remote attackers to execute arbitrary SQL commands through the login field.<\/span><\/strong><\/li><\/ul><\/blockquote><p>Alarmingly, none of these critical vulnerabilities are showing up in popular scan systems that we use to alert us of these threats.<\/p><p style=\"text-align: center;\"><strong><span style=\"font-size: 18px;\">Count of vulnerabilities missed by popular scanners<\/span><\/strong><\/p><table style=\"width: 500px;\" border=\"1\" cellspacing=\"1\" cellpadding=\"1\" align=\"center\"><tbody><tr><td>\u00a0<\/td><td><strong>Nessus<\/strong><\/td><td><strong>Nexpose<\/strong><\/td><td><strong>Qualys<\/strong><\/td><\/tr><tr><td><strong>IBM<\/strong><\/td><td>0<\/td><td>1<\/td><td>0<\/td><\/tr><tr><td><strong>Mysql<\/strong><\/td><td>4<\/td><td>4<\/td><td>4<\/td><\/tr><tr><td><strong>Postgresql<\/strong><\/td><td>1<\/td><td>1<\/td><td>1<\/td><\/tr><tr><td><strong>Microsoft<\/strong><\/td><td>0<\/td><td>1<\/td><td>0<\/td><\/tr><tr><td><strong>Elastic search<\/strong><\/td><td>0<\/td><td>1<\/td><td>0<\/td><\/tr><tr><td><strong>Apache<\/strong><\/td><td>0<\/td><td>1<\/td><td>0<\/td><\/tr><tr><td><strong>Total\u00a0<\/strong><\/td><td><strong>5<\/strong><\/td><td><strong>9<\/strong><\/td><td>5<\/td><\/tr><\/tbody><\/table><p>There is a huge number of vulnerabilities that are yet to weaponized and unless they are fixed immediately database breaches, leaking of private information, auctioning financial data by threat actors will become a daily occurrence.<\/p><p style=\"text-align: center;\"><strong>Download the whitepaper\u00a0<a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-database.html\">Cyber Risk in Database<\/a><\/strong><\/p><p style=\"text-align: center;\"><strong><a href=\"https:\/\/cybersecurityworks.com\/resources\/cyber-risk-series\/cyber-risk-in-database.html\"><img decoding=\"async\" style=\"width: 559px; height: 638px;\" src=\"https:\/\/cybersecurityworks.com\/howdymanage\/uploads\/image\/banner-image\/crs-database-banner.png\" alt=\"\" \/><\/a><\/strong><\/p><p>\u00a0<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Systems, infrastructure, and sensitive information that were recentl viewed within the secure walls of one\u2019s office is now being accessed through insecure connections and unsafe laptops from one\u2019s home.<\/p>\n","protected":false},"author":1,"featured_media":7621,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","footnotes":""},"categories":[80,109],"tags":[323,322,253,141,139,319],"acf":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7620"}],"collection":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/comments?post=7620"}],"version-history":[{"count":7,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7620\/revisions"}],"predecessor-version":[{"id":18763,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/posts\/7620\/revisions\/18763"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media\/7621"}],"wp:attachment":[{"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/media?parent=7620"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/categories?post=7620"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webdev.securin.xyz\/wp-json\/wp\/v2\/tags?post=7620"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}