CVE-2026-55721
StoneFly · Storage Concentrator
StoneFly Storage Concentrator is vulnerable to unauthenticated SQL injection via cookie values in login.pl and debug.pl, allowing for sensitive data extraction.
Executive summary
An unauthenticated SQL injection vulnerability in StoneFly Storage Concentrator allows remote attackers to extract sensitive database information, including password hashes and session tokens.
Vulnerability
This vulnerability occurs due to improper sanitization of cookie values processed by the login.pl and debug.pl scripts. An unauthenticated remote attacker can exploit this to inject malicious SQL commands, enabling unauthorized access to the underlying database.
Business impact
The exploitation of this vulnerability poses a critical risk to data confidentiality and system integrity. With a CVSS score of 9.3, the potential for an attacker to retrieve password hashes and session tokens could lead to full administrative compromise, resulting in severe data breaches, loss of intellectual property, and prolonged operational downtime.
Remediation
Immediate Action: Update StoneFly Storage Concentrator to the latest version provided by the vendor to remediate the vulnerable input handling.
Proactive Monitoring: Review web access logs for suspicious cookie patterns or SQL syntax fragments targeting login.pl and debug.pl scripts.
Compensating Controls: Deploy a Web Application Firewall (WAF) with updated rulesets designed to detect and block SQL injection attempts against cookie parameters.
Exploitation status
Public Exploit Available: Unknown
Analyst recommendation
Given the critical nature of this SQL injection vulnerability, organizations must prioritize patching the affected Storage Concentrator units. Immediate implementation of the vendor-provided update is necessary to prevent unauthorized access to sensitive system credentials and data.