CVE-2018-10915

MEDIUM

Description

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side connection security features, obtain access to higher privileged connections or potentially cause other impact through SQL injection, by causing the PQescape() functions to malfunction. Postgresql versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 are affected.

References

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html

http://www.securityfocus.com/bid/105054

http://www.securitytracker.com/id/1041446

https://access.redhat.com/errata/RHSA-2018:2511

https://access.redhat.com/errata/RHSA-2018:2557

https://access.redhat.com/errata/RHSA-2018:2565

https://access.redhat.com/errata/RHSA-2018:2566

https://access.redhat.com/errata/RHSA-2018:2643

https://access.redhat.com/errata/RHSA-2018:2721

https://access.redhat.com/errata/RHSA-2018:2729

https://access.redhat.com/errata/RHSA-2018:3816

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10915

https://lists.debian.org/debian-lts-announce/2018/08/msg00012.html

https://security.gentoo.org/glsa/201810-08

https://usn.ubuntu.com/3744-1/

https://www.debian.org/security/2018/dsa-4269

https://www.postgresql.org/about/news/1878/

Details

Source: MITRE

Published: 2018-08-09

Updated: 2020-08-17

Type: CWE-89

Risk Information

CVSS v2.0

Base Score: 6

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 6.8

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.6

Severity: HIGH

Vulnerable Software

Tenable Plugins

View all (36 total)

ID	Name	Product	Family	Severity
139655	openSUSE Security Update : postgresql96 / postgresql10 and postgresql12 (openSUSE-2020-1227)	Nessus	SuSE Local Security Checks	medium
127207	NewStart CGSL CORE 5.04 / MAIN 5.04 : postgresql Vulnerability (NS-SA-2019-0036)	Nessus	NewStart CGSL Local Security Checks	medium
123286	openSUSE Security Update : postgresql10 (openSUSE-2019-659)	Nessus	SuSE Local Security Checks	medium
121988	Photon OS 2.0: Postgresql PHSA-2018-2.0-0087	Nessus	PhotonOS Local Security Checks	medium
121879	Photon OS 1.0: Postgresql PHSA-2018-1.0-0178	Nessus	PhotonOS Local Security Checks	medium
120455	Fedora 28 : postgresql (2018-5d1f7bd2d7)	Nessus	Fedora Local Security Checks	medium
120090	SUSE SLED15 / SLES15 Security Update : postgresql10 (SUSE-SU-2018:2564-1)	Nessus	SuSE Local Security Checks	medium
119490	openSUSE Security Update : postgresql94 (openSUSE-2018-1482)	Nessus	SuSE Local Security Checks	medium
119478	Amazon Linux AMI : postgresql96 (ALAS-2018-1119)	Nessus	Amazon Linux Local Security Checks	medium
119477	Amazon Linux AMI : postgresql95 (ALAS-2018-1118)	Nessus	Amazon Linux Local Security Checks	medium
119476	Amazon Linux AMI : postgresql93 / postgresql94 (ALAS-2018-1117)	Nessus	Amazon Linux Local Security Checks	medium
119212	SUSE SLES12 Security Update : postgresql94 (SUSE-SU-2018:3909-1)	Nessus	SuSE Local Security Checks	medium
118508	GLSA-201810-08 : PostgreSQL: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	medium
118448	openSUSE Security Update : postgresql96 (openSUSE-2018-1278)	Nessus	SuSE Local Security Checks	medium
118387	SUSE SLED12 / SLES12 Security Update : postgresql96 (SUSE-SU-2018:3377-1)	Nessus	SuSE Local Security Checks	medium
118320	SUSE SLES11 Security Update : postgresql94 (SUSE-SU-2018:3287-1)	Nessus	SuSE Local Security Checks	medium
117755	EulerOS 2.0 SP3 : postgresql (EulerOS-SA-2018-1312)	Nessus	Huawei Local Security Checks	medium
117754	EulerOS 2.0 SP2 : postgresql (EulerOS-SA-2018-1311)	Nessus	Huawei Local Security Checks	medium
117709	Amazon Linux 2 : postgresql (ALAS-2018-1080)	Nessus	Amazon Linux Local Security Checks	medium
117604	Amazon Linux AMI : postgresql92 (ALAS-2018-1080)	Nessus	Amazon Linux Local Security Checks	medium
117603	Amazon Linux AMI : postgresql93 / postgresql94,postgresql95 (ALAS-2018-1079)	Nessus	Amazon Linux Local Security Checks	medium
117346	Amazon Linux AMI : postgresql96 (ALAS-2018-1074)	Nessus	Amazon Linux Local Security Checks	medium
117324	RHEL 7 : Virtualization (RHSA-2018:2643)	Nessus	Red Hat Local Security Checks	medium
112269	openSUSE Security Update : postgresql10 (openSUSE-2018-955)	Nessus	SuSE Local Security Checks	medium
112221	Photon OS 1.0: Postgresql / Python2 / Python3 / Strongswan PHSA-2018-1.0-0178 (deprecated)	Nessus	PhotonOS Local Security Checks	medium
112220	Photon OS 2.0: Krb5 / Postgresql PHSA-2018-2.0-0087 (deprecated)	Nessus	PhotonOS Local Security Checks	medium
112163	CentOS 7 : postgresql (CESA-2018:2557)	Nessus	CentOS Local Security Checks	medium
112105	Scientific Linux Security Update : postgresql on SL7.x x86_64 (20180823)	Nessus	Scientific Linux Local Security Checks	medium
112104	RHEL 7 : postgresql (RHSA-2018:2557)	Nessus	Red Hat Local Security Checks	medium
112103	Oracle Linux 7 : postgresql (ELSA-2018-2557)	Nessus	Oracle Linux Local Security Checks	medium
111966	PostgreSQL 9.3.x < 9.3.24 / 9.4.x < 9.4.19 / 9.5.x < 9.5.14 / 9.6.x < 9.6.10 / 10.x < 10.5 Multiple Vulnerabilities	Nessus	Databases	medium
111844	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : PostgreSQL vulnerabilities (USN-3744-1)	Nessus	Ubuntu Local Security Checks	medium
111770	Fedora 27 : postgresql (2018-d8f5aea89d)	Nessus	Fedora Local Security Checks	medium
111762	Debian DLA-1464-1 : postgresql-9.4 security update	Nessus	Debian Local Security Checks	medium
111656	FreeBSD : PostgreSQL -- two vulnerabilities (96eab874-9c79-11e8-b34b-6cc21735f730)	Nessus	FreeBSD Local Security Checks	medium
111653	Debian DSA-4269-1 : postgresql-9.6 - security update	Nessus	Debian Local Security Checks	medium