What is the severity of CVE-2013-4422?

CVE-2013-4422 is classified as a medium severity SQL injection vulnerability.

How can I fix CVE-2013-4422?

To mitigate CVE-2013-4422, upgrade Quassel IRC to version 0.9.1 or later.

What systems are affected by CVE-2013-4422?

CVE-2013-4422 affects versions of Quassel IRC prior to 0.9.1 when using Qt 4.8.5 or later and PostgreSQL 8.2 or later.

What type of vulnerability is CVE-2013-4422?

CVE-2013-4422 is an SQL injection vulnerability.

Can remote attackers exploit CVE-2013-4422?

Yes, remote attackers can exploit CVE-2013-4422 to execute arbitrary SQL commands.

Vulnerability/
CVE-2013-4422

medium

6.8

CWE

23/10/2013

6/8/2024

CVE-2013-4422: SQL Injection

First published: Wed Oct 23 2013(Updated: )

SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attackers to execute arbitrary SQL commands via a \ (backslash) in a message.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Quassel IRC	<=0.9.0
Quassel IRC	=0.1.0
Quassel IRC	=0.3.0
Quassel IRC	=0.3.0.1
Quassel IRC	=0.3.0.2
Quassel IRC	=0.3.0.3
Quassel IRC	=0.3.1
Quassel IRC	=0.4.0
Quassel IRC	=0.4.1
Quassel IRC	=0.4.2
Quassel IRC	=0.4.3
Quassel IRC	=0.5.0
Quassel IRC	=0.6.1
Quassel IRC	=0.6.2
Quassel IRC	=0.6.3
Quassel IRC	=0.7.0
Quassel IRC	=0.7.1
Quassel IRC	=0.7.2
Quassel IRC	=0.7.3
Quassel IRC	=0.7.4
Quassel IRC	=0.8.0
PostgreSQL Common	=8.2
PostgreSQL Common	=8.2.1
PostgreSQL Common	=8.2.2
PostgreSQL Common	=8.2.3
PostgreSQL Common	=8.2.4
PostgreSQL Common	=8.2.5
PostgreSQL Common	=8.2.6
PostgreSQL Common	=8.2.7
PostgreSQL Common	=8.2.8
PostgreSQL Common	=8.2.9
PostgreSQL Common	=8.2.10
PostgreSQL Common	=8.2.11
PostgreSQL Common	=8.2.12
PostgreSQL Common	=8.2.13
PostgreSQL Common	=8.2.14
PostgreSQL Common	=8.2.15
PostgreSQL Common	=8.2.16
PostgreSQL Common	=8.2.17
PostgreSQL Common	=8.2.18
PostgreSQL Common	=8.3
PostgreSQL Common	=8.3.1
PostgreSQL Common	=8.3.2
PostgreSQL Common	=8.3.3
PostgreSQL Common	=8.3.4
PostgreSQL Common	=8.3.5
PostgreSQL Common	=8.3.6
PostgreSQL Common	=8.3.7
PostgreSQL Common	=8.3.8
PostgreSQL Common	=8.3.9
PostgreSQL Common	=8.3.10
PostgreSQL Common	=8.3.11
PostgreSQL Common	=8.3.12
PostgreSQL Common	=8.3.13
PostgreSQL Common	=8.3.14
PostgreSQL Common	=8.3.15
PostgreSQL Common	=8.3.16
PostgreSQL Common	=8.3.17
PostgreSQL Common	=8.3.18
PostgreSQL Common	=8.3.19
PostgreSQL Common	=8.3.20
PostgreSQL Common	=8.3.21
PostgreSQL Common	=8.3.22
PostgreSQL Common	=8.4
PostgreSQL Common	=8.4.1
PostgreSQL Common	=8.4.2
PostgreSQL Common	=8.4.3
PostgreSQL Common	=8.4.4
PostgreSQL Common	=8.4.5
PostgreSQL Common	=8.4.6
PostgreSQL Common	=8.4.7
PostgreSQL Common	=8.4.8
PostgreSQL Common	=8.4.9
PostgreSQL Common	=8.4.10
PostgreSQL Common	=8.4.11
PostgreSQL Common	=8.4.12
PostgreSQL Common	=8.4.13
PostgreSQL Common	=8.4.14
PostgreSQL Common	=8.4.15
PostgreSQL Common	=8.4.16
PostgreSQL Common	=9.0
PostgreSQL Common	=9.0.1
PostgreSQL Common	=9.0.2
PostgreSQL Common	=9.0.3
PostgreSQL Common	=9.0.4
PostgreSQL Common	=9.0.5
PostgreSQL Common	=9.0.6
PostgreSQL Common	=9.0.7
PostgreSQL Common	=9.0.8
PostgreSQL Common	=9.0.9
PostgreSQL Common	=9.0.10
PostgreSQL Common	=9.0.11
PostgreSQL Common	=9.0.12
PostgreSQL Common	=9.1
PostgreSQL Common	=9.1.1
PostgreSQL Common	=9.1.2
PostgreSQL Common	=9.1.3
PostgreSQL Common	=9.1.4
PostgreSQL Common	=9.1.5
PostgreSQL Common	=9.1.6
PostgreSQL Common	=9.1.7
PostgreSQL Common	=9.1.8
PostgreSQL Common	=9.2
PostgreSQL Common	=9.2.1
PostgreSQL Common	=9.2.2
PostgreSQL Common	=9.2.3
Trolltech Qt	=4.8.5
Trolltech Qt	=5.0.0
Trolltech Qt	=5.0.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-4422?
CVE-2013-4422 is classified as a medium severity SQL injection vulnerability.
How can I fix CVE-2013-4422?
To mitigate CVE-2013-4422, upgrade Quassel IRC to version 0.9.1 or later.
What systems are affected by CVE-2013-4422?
CVE-2013-4422 affects versions of Quassel IRC prior to 0.9.1 when using Qt 4.8.5 or later and PostgreSQL 8.2 or later.
What type of vulnerability is CVE-2013-4422?
CVE-2013-4422 is an SQL injection vulnerability.
Can remote attackers exploit CVE-2013-4422?
Yes, remote attackers can exploit CVE-2013-4422 to execute arbitrary SQL commands.

agent/type
agent/references
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/weakness
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/quassel-irc
canonical/quassel irc
version/quassel irc/0.9.0
version/quassel irc/0.1.0
version/quassel irc/0.3.0
version/quassel irc/0.3.0.1
version/quassel irc/0.3.0.2
version/quassel irc/0.3.0.3
version/quassel irc/0.3.1
version/quassel irc/0.4.0
version/quassel irc/0.4.1
version/quassel irc/0.4.2
version/quassel irc/0.4.3
version/quassel irc/0.5.0
version/quassel irc/0.6.1
version/quassel irc/0.6.2
version/quassel irc/0.6.3
version/quassel irc/0.7.0
version/quassel irc/0.7.1
version/quassel irc/0.7.2
version/quassel irc/0.7.3
version/quassel irc/0.7.4
version/quassel irc/0.8.0
vendor/postgresql
canonical/postgresql common
version/postgresql common/8.2
version/postgresql common/8.2.1
version/postgresql common/8.2.2
version/postgresql common/8.2.3
version/postgresql common/8.2.4
version/postgresql common/8.2.5
version/postgresql common/8.2.6
version/postgresql common/8.2.7
version/postgresql common/8.2.8
version/postgresql common/8.2.9
version/postgresql common/8.2.10
version/postgresql common/8.2.11
version/postgresql common/8.2.12
version/postgresql common/8.2.13
version/postgresql common/8.2.14
version/postgresql common/8.2.15
version/postgresql common/8.2.16
version/postgresql common/8.2.17
version/postgresql common/8.2.18
version/postgresql common/8.3
version/postgresql common/8.3.1
version/postgresql common/8.3.2
version/postgresql common/8.3.3
version/postgresql common/8.3.4
version/postgresql common/8.3.5
version/postgresql common/8.3.6
version/postgresql common/8.3.7
version/postgresql common/8.3.8
version/postgresql common/8.3.9
version/postgresql common/8.3.10
version/postgresql common/8.3.11
version/postgresql common/8.3.12
version/postgresql common/8.3.13
version/postgresql common/8.3.14
version/postgresql common/8.3.15
version/postgresql common/8.3.16
version/postgresql common/8.3.17
version/postgresql common/8.3.18
version/postgresql common/8.3.19
version/postgresql common/8.3.20
version/postgresql common/8.3.21
version/postgresql common/8.3.22
version/postgresql common/8.4
version/postgresql common/8.4.1
version/postgresql common/8.4.2
version/postgresql common/8.4.3
version/postgresql common/8.4.4
version/postgresql common/8.4.5
version/postgresql common/8.4.6
version/postgresql common/8.4.7
version/postgresql common/8.4.8
version/postgresql common/8.4.9
version/postgresql common/8.4.10
version/postgresql common/8.4.11
version/postgresql common/8.4.12
version/postgresql common/8.4.13
version/postgresql common/8.4.14
version/postgresql common/8.4.15
version/postgresql common/8.4.16
version/postgresql common/9.0
version/postgresql common/9.0.1
version/postgresql common/9.0.2
version/postgresql common/9.0.3
version/postgresql common/9.0.4
version/postgresql common/9.0.5
version/postgresql common/9.0.6
version/postgresql common/9.0.7
version/postgresql common/9.0.8
version/postgresql common/9.0.9
version/postgresql common/9.0.10
version/postgresql common/9.0.11
version/postgresql common/9.0.12
version/postgresql common/9.1
version/postgresql common/9.1.1
version/postgresql common/9.1.2
version/postgresql common/9.1.3
version/postgresql common/9.1.4
version/postgresql common/9.1.5
version/postgresql common/9.1.6
version/postgresql common/9.1.7
version/postgresql common/9.1.8
version/postgresql common/9.2
version/postgresql common/9.2.1
version/postgresql common/9.2.2
version/postgresql common/9.2.3
vendor/qt
canonical/trolltech qt
version/trolltech qt/4.8.5
version/trolltech qt/5.0.0
version/trolltech qt/5.0.1