VDB
EN
HIGH

GHSA-rh62-j648-g5qc

Recce server has unauthenticated SQL execution that allows local file read/write through DuckDB

상세

### Impact Recce OSS server deployments that expose the server to an untrusted network without authentication are vulnerable to unauthenticated SQL execution through the query run API.

When Recce is configured with a DuckDB-backed project, an attacker can use DuckDB filesystem primitives to read and write files accessible to the Recce server process. The impact depends on how Recce is deployed, but may include disclosure of local files, tampering with Recce/dbt artifacts, modification of browser-served static files leading to stored XSS, and modification of application files if those paths are writable. If Recce is run as root, file access occurs with root privileges inside that host or container.

### Patches This issue has been patched in Recce `v1.50.0`. Users should upgrade to Recce `v1.50.0` or later.

The patch restricts unsafe file read/write behavior for DuckDB-backed query execution and hardens the affected query path. Other warehouse adapters have also been reviewed for similar exposure.

### Credits Thanks to Sitampan ([@hxcbtc](https://x.com/hxcbtc)) for responsibly reporting this issue.

### Workarounds Users who cannot upgrade immediately should avoid exposing `recce server` to the public internet or any untrusted network.

Recommended mitigations include enabling authentication or placing Recce behind an authenticated reverse proxy/VPN, running Recce as a non-root user, using a read-only application filesystem where possible, and ensuring that sensitive files or credentials are not available to the Recce process.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / recce
최초 영향 버전: 0 수정 버전: 1.50.0
수정 pip install --upgrade 'recce>=1.50.0'

참고