Description
Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is incorporated directly into database queries without adequate sanitization, allowing an unauthenticated remote attacker to manipulate those queries and extract sensitive information from the underlying database, including session tokens, password hashes, and stored secret keys.
Published: 2026-06-30
Score: 9.2 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability resides in the StoneFly Storage Concentrator (both hardware and virtual machine editions). The login.pl and debug.pl scripts incorporate cookie values directly into SQL queries without adequate sanitization. This flaw permits an unauthenticated remote attacker to inject arbitrary SQL, enabling extraction of sensitive data such as session tokens, password hashes, and stored secret keys. The weakness is categorized as CWE‑89, a classic SQL injection vulnerability.

Affected Systems

Affected products are StoneFly Storage Concentrator and StoneFly Storage Concentrator Virtual Machine. The CVE does not enumerate specific firmware revisions, so users should confirm whether their current version contains the flaw. StoneFly recommends upgrading to version 8.0.4.29 or later to eliminate the vulnerable code paths.

Risk and Exploitability

The CVSS score of 9.2 denotes a high‑severity issue. EPSS information is unavailable, but the lack of KEV listing does not reduce the inherent risk. Because the flaw can be triggered from any external system that can set cookies on the web interface, an attacker can remotely execute the injection and exfiltrate confidential data without needing prior authentication. The vulnerability relies on unauthenticated access to the login and debug scripts, making it relatively easy to exploit in exposed or poorly protected environments.

Generated by OpenCVE AI on July 1, 2026 at 14:45 UTC.

Remediation

Vendor Solution

StoneFly recommends that users upgrade to Storage Concentrator version 8.0.4.29 or later to remediate these vulnerabilities.


OpenCVE Recommended Actions

  • Upgrade StoneFly Storage Concentrator to version 8.0.4.29 or later to remove the vulnerable login.pl and debug.pl scripts.
  • Limit external exposure of the Storage Concentrator web interface by applying firewall or VLAN segmentation rules to restrict cookie‑based access to trusted networks.
  • Monitor database logs and network traffic for anomalous query patterns or unauthorized cookie traffic, and configure intrusion detection systems to alert on suspicious activity.

Generated by OpenCVE AI on July 1, 2026 at 14:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 30 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is incorporated directly into database queries without adequate sanitization, allowing an unauthenticated remote attacker to manipulate those queries and extract sensitive information from the underlying database, including session tokens, password hashes, and stored secret keys.
Title SQL Injection in StoneFly Storage Concentrator
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 9.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N'}

cvssV4_0

{'score': 9.2, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-06-30T22:36:22.639Z

Reserved: 2026-06-22T20:13:36.520Z

Link: CVE-2026-55721

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T15:00:06Z

Weaknesses
  • CWE-89

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')