Products Firewalla Gold SE Firewalla Gold Pro Firewalla Gold Plus Firewalla Purple Firewalla Purple SE Firewalla Wi-Fi SD Product Comparison Product Reviews

Unusual Security Alert

Follow
Avatar
Michael Clark
Alert says "An SQL injection victim was discovered!" When I look at the details the Device Info is all zeros? The destination domain, site, and address are all related to wikipedia. There was no data transferred. Not sure how to react to this?
0

Comments

7 comments

Sort by Date Votes
  • Avatar
    Firewalla

    I think you may run into a UI bug.  Are you using Android or iOS?

    0
    Comment actions Permalink
  • Avatar
    Michael Clark

    Android

    0
    Comment actions Permalink
  • Avatar
    Ben Naaktgeboren

    Same "problem" here. What does it means?

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    A few months ago, the problem was a bug in app, that doesn't display the details.   That should be fixed.

    This particular alarm is more of Firewalla detects there is a possibility (likely, but not always guaranteed) that one of devices is sending out a query pattern in the URL that match (using regex) a pattern used to do SQL injection. (SQL commands in the URL, and hoping it gets executed).   Since regex is used, false-positive is likely.

    0
    Comment actions Permalink
  • Avatar
    Brian

    I have received two such Sql injection errors on my gold firewall and the details are still missing on which device on my network are responsible for the notification... I am on the must recent version of Android app. Thanks!

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Tap on the alarm and send that information to help@firewalla.com, we can help you take a look. 

    Sql injection are matching special patterns in the URL ... so it is possible at times there are false positives. 

    0
    Comment actions Permalink
  • Avatar
    MtClouds

    I just experienced the same issue - security alert SQL injection with all 0s and no actionable information. 

    When I choose device details I get a failed to load device error.

    Can you please explain how to send the information to Firewalla.  When I tap on the alarm I have no option to send the details that I can find.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post