CVE-2020-25695high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References
https://bugzilla.redhat.com/show_bug.cgi?id=1894425
https://lists.debian.org/debian-lts-announce/2020/12/msg00005.html
https://security.gentoo.org/glsa/202012-07
Details
Source: MITRE
Published: 2020-11-16
Updated: 2020-12-07
Type: CWE-89
Risk Information
CVSS v2
Base Score: 6.5
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8
Severity: MEDIUM
CVSS v3
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 151513 | Amazon Linux AMI : postgresql92 (ALAS-2021-1519) | Nessus | Amazon Linux Local Security Checks | high |
| 150972 | Amazon Linux 2 : postgresql (ALAS-2021-1665) | Nessus | Amazon Linux Local Security Checks | high |
| 150771 | CentOS 7 : postgresql (CESA-2021:1512) | Nessus | CentOS Local Security Checks | high |
| 150722 | Oracle Linux 7 : rh-postgresql10-postgresql (ELSA-2021-9290) | Nessus | Oracle Linux Local Security Checks | high |
| 149321 | RHEL 7 : postgresql (RHSA-2021:1512) | Nessus | Red Hat Local Security Checks | high |
| 149316 | Oracle Linux 7 : postgresql (ELSA-2021-1512) | Nessus | Oracle Linux Local Security Checks | high |
| 149120 | EulerOS 2.0 SP3 : postgresql (EulerOS-SA-2021-1833) | Nessus | Huawei Local Security Checks | high |
| 148042 | EulerOS 2.0 SP5 : postgresql (EulerOS-SA-2021-1700) | Nessus | Huawei Local Security Checks | high |
| 147603 | EulerOS Virtualization 3.0.2.6 : postgresql (EulerOS-SA-2021-1448) | Nessus | Huawei Local Security Checks | high |
| 147131 | EulerOS Virtualization 3.0.6.6 : postgresql (EulerOS-SA-2021-1511) | Nessus | Huawei Local Security Checks | high |
| 146831 | openSUSE Security Update : postgresql / postgresql13 (openSUSE-2021-337) | Nessus | SuSE Local Security Checks | high |
| 146722 | EulerOS 2.0 SP2 : postgresql (EulerOS-SA-2021-1348) | Nessus | Huawei Local Security Checks | high |
| 146009 | CentOS 8 : postgresql:9.6 (CESA-2020:5619) | Nessus | CentOS Local Security Checks | high |
| 146002 | CentOS 8 : postgresql:12 (CESA-2020:5620) | Nessus | CentOS Local Security Checks | high |
| 145829 | CentOS 8 : postgresql:10 (CESA-2020:5567) | Nessus | CentOS Local Security Checks | high |
| 145490 | SUSE SLES12 Security Update : postgresql, postgresql12, postgresql13 (SUSE-SU-2021:0217-1) | Nessus | SuSE Local Security Checks | high |
| 145243 | RHEL 8 : postgresql:10 (RHSA-2021:0166) | Nessus | Red Hat Local Security Checks | high |
| 145239 | SUSE SLED15 / SLES15 Security Update : postgresql, postgresql13 (SUSE-SU-2021:0175-1) | Nessus | SuSE Local Security Checks | high |
| 145227 | RHEL 8 : postgresql:9.6 (RHSA-2021:0167) | Nessus | Red Hat Local Security Checks | high |
| 145044 | RHEL 8 : postgresql:12 (RHSA-2021:0163) | Nessus | Red Hat Local Security Checks | high |
| 145043 | RHEL 8 : postgresql:9.6 (RHSA-2021:0164) | Nessus | Red Hat Local Security Checks | high |
| 145042 | RHEL 8 : postgresql:10 (RHSA-2021:0161) | Nessus | Red Hat Local Security Checks | high |
| 144988 | Amazon Linux AMI : postgresql95, postgresql96 (ALAS-2021-1476) | Nessus | Amazon Linux Local Security Checks | high |
| 144565 | Oracle Linux 8 : ELSA-2020-5619-1: / postgresql:9.6 (ELSA-2020-56191) | Nessus | Oracle Linux Local Security Checks | high |
| 144564 | Oracle Linux 8 : ELSA-2020-5620-1: / postgresql:12 (ELSA-2020-56201) | Nessus | Oracle Linux Local Security Checks | high |
| 144561 | Oracle Linux 8 : ELSA-2020-5567-1: / postgresql:10 (ELSA-2020-55671) | Nessus | Oracle Linux Local Security Checks | high |
| 144560 | RHEL 8 : postgresql:9.6 (RHSA-2020:5661) | Nessus | Red Hat Local Security Checks | high |
| 144559 | RHEL 8 : postgresql:10 (RHSA-2020:5664) | Nessus | Red Hat Local Security Checks | high |
| 144417 | RHEL 8 : postgresql:12 (RHSA-2020:5620) | Nessus | Red Hat Local Security Checks | high |
| 144401 | RHEL 8 : postgresql:10 (RHSA-2020:5567) | Nessus | Red Hat Local Security Checks | high |
| 144395 | RHEL 8 : postgresql:9.6 (RHSA-2020:5619) | Nessus | Red Hat Local Security Checks | high |
| 144160 | EulerOS 2.0 SP8 : postgresql (EulerOS-SA-2020-2526) | Nessus | Huawei Local Security Checks | high |
| 144060 | PostgreSQL 9.5.x < 9.5.24 / 9.6.x < 9.6.20 / 10.x < 10.15 / 11.x < 11.10 / 12.x < 12.5 / 13.x < 13.1 Multiple Vulnerabilities | Nessus | Databases | high |
| 143871 | SUSE SLED15 / SLES15 Security Update : postgresql10 (SUSE-SU-2020:3476-1) | Nessus | SuSE Local Security Checks | high |
| 143859 | SUSE SLED15 / SLES15 Security Update : postgresql12 (SUSE-SU-2020:3463-1) | Nessus | SuSE Local Security Checks | high |
| 143846 | SUSE SLES15 Security Update : postgresql10 (SUSE-SU-2020:3455-1) | Nessus | SuSE Local Security Checks | high |
| 143737 | SUSE SLED15 / SLES15 Security Update : postgresql12 (SUSE-SU-2020:3425-1) | Nessus | SuSE Local Security Checks | high |
| 143661 | SUSE SLES12 Security Update : postgresql10 (SUSE-SU-2020:3464-1) | Nessus | SuSE Local Security Checks | high |
| 143653 | SUSE SLES12 Security Update : postgresql12 (SUSE-SU-2020:3630-1) | Nessus | SuSE Local Security Checks | high |
| 143617 | SUSE SLES12 Security Update : postgresql96 (SUSE-SU-2020:3477-1) | Nessus | SuSE Local Security Checks | high |
| 143503 | GLSA-202012-07 : PostgreSQL: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 143461 | Debian DLA-2478-1 : postgresql-9.6 security update | Nessus | Debian Local Security Checks | high |
| 143363 | Photon OS 1.0: Postgresql PHSA-2020-1.0-0340 | Nessus | PhotonOS Local Security Checks | high |
| 143362 | Photon OS 2.0: Postgresql PHSA-2020-2.0-0298 | Nessus | PhotonOS Local Security Checks | high |
| 143343 | openSUSE Security Update : postgresql12 (openSUSE-2020-2018) | Nessus | SuSE Local Security Checks | high |
| 143338 | openSUSE Security Update : postgresql10 (openSUSE-2020-2019) | Nessus | SuSE Local Security Checks | high |
| 143320 | openSUSE Security Update : postgresql10 (openSUSE-2020-2028) | Nessus | SuSE Local Security Checks | high |
| 143290 | openSUSE Security Update : postgresql12 (openSUSE-2020-2029) | Nessus | SuSE Local Security Checks | high |
| 143252 | Photon OS 3.0: Postgresql PHSA-2020-3.0-0164 | Nessus | PhotonOS Local Security Checks | high |
| 142968 | Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 : PostgreSQL vulnerabilities (USN-4633-1) | Nessus | Ubuntu Local Security Checks | high |