Home

Description

OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the TestDefinitionDAO interface. The supportedDataTypeParam parameter can be used to build a SQL query.

PUBLISHED Reserved 2025-06-16 | Published 2025-08-08 | Updated 2025-08-08 | Assigner mitre

References

github.com/.../openmetadata/service/jdbi3/CollectionDAO.java

github.com/.../openmetadata/service/jdbi3/CollectionDAO.java

gist.github.com/javadk/ed0d38e4578405672f154e289036a705

cve.org (CVE-2025-50467)

nvd.nist.gov (CVE-2025-50467)

Download JSON