Metacat data repository software contains an unauthenticated SQL injection vulnerability allowing full database read/write/execute access.
Description
Metacat data repository software contains an unauthenticated SQL injection vulnerability allowing full database read/write/execute access.
AI Analyst Comment
Remediation
Update Arch Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: DataONE (Metacat)
PRODUCT: Metacat
AFFECTED_VERSIONS: 2.0.0 and above, prior to 3.0.0
---END_METADATA---
Description Summary:
Metacat data repository software contains an unauthenticated SQL injection vulnerability allowing full database read/write/execute access.
Executive Summary:
An unauthenticated SQL injection vulnerability in Metacat allows attackers to gain complete control over the application's database.
Vulnerability Details
CVE-ID: CVE-2026-48114
Affected Software: Metacat (DataONE)
Affected Versions: 2.0.0 and above, prior to 3.0.0
Vulnerability: The
/harvesterRegistrationendpoint fails to properly escape input parameters, allowing an unauthenticated attacker to perform SQL injection via string concatenation. This allows for stacked queries, granting full access to the PostgreSQL database.Business Impact
With a CVSS score of 9.8, this vulnerability represents a total loss of data confidentiality and integrity. An attacker can exfiltrate sensitive research data, modify repository contents, or execute system-level commands within the database context, causing massive disruption to research activities.
Remediation Plan
Immediate Action: Upgrade Metacat to version 3.0.0 or later to resolve the SQL injection flaw.
Proactive Monitoring: Review database logs for suspicious query patterns or unexpected attempts to access system-level tables.
Compensating Controls: Use a WAF with SQL injection protection rules to filter malicious input at the
/harvesterRegistrationendpoint.Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of June 15, 2026, there is no public information indicating active exploitation of this vulnerability. However, the exposure of the database makes this a high-risk scenario.
Analyst Recommendation
SQL injection is a well-understood but devastating attack vector. Given the full access granted by this flaw, administrators must upgrade to version 3.0.0 immediately to secure the repository and its underlying data.