Aug 30, 02:56 AM

TSA's $11.8 Billion Security Exposed to SQL Injection Risks

A significant security vulnerability has been identified in the Transportation Security Administration (TSA) systems, allowing individuals to bypass airport security through a 2005-style SQL injection. This flaw could potentially enable unauthorized access to airplane cockpits, posing serious risks to aviation safety. The TSA, with an annual budget of $11.8 billion that increases by 20% each year, faces criticism for the inadequacy of its security measures. Researchers highlighted that anyone with basic knowledge of SQL injection could exploit this vulnerability to add individuals to the Known Crewmember (KCM) and Cockpit Access Security System (CASS), effectively bypassing security screenings.

#Transportation Security Administration #SQL #Known Crewmember #KCM #Cockpit Access Security System #CASS

Written with ChatGPT (GPT-4o).

Sources

graham starr@GrahamStarr
1 year ago
“Anyone with basic knowledge of SQL injection could login to this site and add anyone they wanted to KCM and CASS, allowing themselves to both skip security screening and then access the cockpits of commercial airliners.” https://t.co/ybx0c940tm
The Register@TheRegister
1 year ago
Tired of airport security queues? SQL inject yourself into the cockpit, claim researchers https://t.co/HdB1n9nG1J
Binni Shah@binitamshah
1 year ago
Bypassing airport security via SQL injection : https://t.co/8ciaKWWEbc credits @samwcyo @iangcarroll https://t.co/6mf4Sl2OVv

Additional media

Image #1 for story tsa-s-11-8-billion-security-exposed-to-sql-injection-risks

TSA's $11.8 Billion Security Exposed to SQL Injection Risks

Sources

Additional media

Similar Stories