CVE-2025-61022
Deferred Deferred - Pending Action
Denial of Service in Virtuoso Open-Source Database

Publication date: 2026-06-23

Last updated on: 2026-06-23

Assigner: MITRE

Description
An issue in the sqlo_tb_col_preds component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-23
Last Modified
2026-06-23
Generated
2026-06-23
AI Q&A
2026-06-23
EPSS Evaluated
N/A
NVD
CVE-2025-61022
EUVD
EUVD-2025-210317
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openlink virtuoso-opensource 7.2.11
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-89 The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

To mitigate the vulnerability in openlink virtuoso-opensource v7.2.11 related to the sqlo_tb_col_preds component causing a Denial of Service via crafted SQL statements, immediate steps include avoiding the execution of SQL queries that use the specific patterns triggering the crash, such as those involving LEFT JOIN operations combined with the CONTAINS function as demonstrated in the Proof of Concept.

Additionally, consider using the provided Docker container and beta images to reproduce and understand the issue, which can help in testing potential workarounds or patches.

Executive Summary

This vulnerability exists in the sqlo_tb_col_preds component of openlink virtuoso-opensource version 7.2.11. It allows attackers to cause a Denial of Service (DoS) by submitting specially crafted SQL statements. Specifically, a certain SQL query involving a LEFT JOIN operation with a CONTAINS function can trigger a crash in the software.

The issue was identified when a fuzzer caused Virtuoso 7.2.11 to crash while processing such a query, with the crash occurring in the sqlo_tb_col_preds function. The problem is reproducible and has been documented with a proof of concept query.

Impact Analysis

This vulnerability can impact you by causing a Denial of Service (DoS) condition in the openlink virtuoso-opensource database system. An attacker can exploit this by sending crafted SQL queries that crash the system, potentially making the database unavailable or unstable.

Detection Guidance

This vulnerability can be detected by attempting to reproduce the crash using the Proof of Concept (PoC) SQL query that triggers the issue in the sqlo_tb_col_preds component.

The PoC query is: CREATE TABLE v2 ( v3 INTEGER ) ; SELECT * FROM v2 LEFT JOIN v2 AS constraintdef ON v2.v3 = v2.v3 AND contains(v3, 'A/B-move/C-move');

Running this query on a vulnerable version of openlink virtuoso-opensource (v7.2.11) should cause a crash, indicating the presence of the vulnerability.

To detect this on your system, you can execute the above SQL commands in your Virtuoso environment and monitor for crashes or Denial of Service behavior.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-61022. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart