CVE-2026-25076 | THREATINT

Description

Anchore Enterprise versions before 5.25.1 contain an SQL injection vulnerability in the GraphQL Reports API. An authenticated attacker that is able to access the GraphQL API could execute arbitrary SQL instructions resulting in modifications to the data contained in the Anchore Enterprise database.

PUBLISHED Reserved 2026-01-28 | Published 2026-03-12 | Updated 2026-03-13 | Assigner VulnCheck

HIGH: 8.5CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

HIGH: 7.3CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Problem types

SQL Injection

Product status

Default status

unaffected

Any version before 5.25.1

affected

Credits

Andrew Van Fleteren finder

References

docs.anchore.com/current/docs/release_notes/enterprise/5251/ (Anchore Enterprise Release Notes - Version 5.25.1) release-notes patch

anchore.com/platform/ product

www.vulncheck.com/...prise-graphql-reports-api-sql-injection (VulnCheck Advisory: Anchore Enterprise GraphQL Reports API SQL injection) third-party-advisory

cve.org (CVE-2026-25076)

nvd.nist.gov (CVE-2026-25076)

Download JSON