Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
8DescriptionCVE.org
A vulnerability was detected in ByteDance coze-studio up to 0.5.1. Affected by this vulnerability is the function ExecuteSQL of the file backend/domain/memory/database/service/database_impl.go of the component databaseTool. Performing a manipulation results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
SQL injection in ByteDance coze-studio up to version 0.5.1 allows authenticated remote attackers to manipulate the ExecuteSQL function in the databaseTool component, enabling arbitrary SQL query execution with limited confidentiality and integrity impact. The vulnerability has a publicly available exploit and affects the backend database service layer; the vendor has not responded to disclosure efforts.
Technical ContextAI
The vulnerability exists in the ExecuteSQL function within backend/domain/memory/database/service/database_impl.go, part of the databaseTool component. The root cause is CWE-89 (SQL Injection), indicating that user-supplied input is not properly sanitized before being incorporated into SQL queries. The attack vector is network-based with low complexity, requiring only low-privilege authentication. The affected product is ByteDance's coze-studio, identified by CPE cpe:2.3:a:bytedance:coze-studio:*:*:*:*:*:*:*:*, a tool that likely provides database manipulation capabilities through a backend service.
RemediationAI
Upgrade ByteDance coze-studio to a version newer than 0.5.1 immediately; however, no patched version has been identified in available sources. Contact ByteDance support to obtain a fixed release or backported patch, though the vendor has historically not responded to security disclosures. As immediate compensating controls, restrict network access to the coze-studio backend service using firewall rules to limit exposure to trusted network segments only; disable or restrict access to the databaseTool component and ExecuteSQL function if they are not essential for operations; implement least-privilege access controls to ensure only high-trust users have authentication credentials for coze-studio; and deploy Web Application Firewall (WAF) rules to detect and block SQL injection payloads targeting the databaseTool endpoint (monitor for SQL keywords and syntax indicators in request parameters). Monitor database query logs for suspicious SQL patterns indicative of injection attempts. Note that compensating controls do not eliminate the underlying vulnerability and should be considered temporary measures until a patch is available.
Same weakness CWE-89 – SQL Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-25698