Home

Description

sqls-server/sqls 0.2.28 is vulnerable to command injection in the config command because the openEditor function passes the EDITOR environment variable and config file path to sh -c without sanitization, allowing attackers to execute arbitrary commands.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-30 | Updated 2025-10-30 | Assigner mitre

References

github.com/sqls-server/sqls/

advisory.dw1.io/54/

lukmanern.github.io/CVE-2025-61141.html

cve.org (CVE-2025-61141)

nvd.nist.gov (CVE-2025-61141)

Download JSON