The Recording
The Panelists
- Kevin Feasel
- Mala Mahadevan
- Mike Chrestensen
Notes: Questions and Topics
CVE-2025-49719
Our first topic was a big one: a SQL Server vulnerability going back at least to SQL Server 2016. Basically, patch your systems.
The problem is that Microsoft has provided basically no information on the topic. I do see after the show aired that they thanked Vladimir Aleksic, a Microsoft employee who is a Software Engineer. This tell us that it was an internal finding, which is what I suspected given the lack of fanfare over this vulnerability.
Supabase MCP and Data Leakage
Our other major topic had to do with this write-up on using a language model and automated tools to leak data. The attack vector is basically the same as any other injection attack: you make it so that the interpreting system cannot differentiate between data and code, and so it accidentally executes code.
The two proposed solutions in this article are bad—they don’t actually fix the problem, and are analogs to the terrible advice people would give for SQL injection around doing things like looking for specific keywords or combinations. The problem is that either there’s a way around your regular expression or you’re so restrictive that you’re breaking on valid requests.