Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

Low

Attack Vector

Network

0

CVE-2023-39417

Disclosure Date: August 11, 2023 •

CVE-2023-39417 CVSS v3 Base Score: 8.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:…@ inside a quoting construct (dollar quoting, “, or “”). If an administrator has installed files of a vulnerable, trusted, non-bundled extension, an attacker with database-level CREATE privilege can execute arbitrary code as the bootstrap superuser.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

8.8 High

Impact Score:

5.9

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

OS

Unknown

Vulnerable Versions

Red Hat Advanced Cluster Security 4.2 not down converted

Red Hat Advanced Cluster Security 4.2 not down converted

Red Hat Advanced Cluster Security 4.2 not down converted

Red Hat Advanced Cluster Security 4.2 not down converted

Red Hat Advanced Cluster Security 4.2 not down converted

Red Hat Enterprise Linux 8 not down converted

Red Hat Enterprise Linux 8 not down converted

Red Hat Enterprise Linux 8 not down converted

Red Hat Enterprise Linux 8 not down converted

Red Hat Enterprise Linux 8.2 Advanced Update Support not down converted

Red Hat Enterprise Linux 8.2 Telecommunications Update Service not down converted

Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions not down converted

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support not down converted

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support not down converted

Red Hat Enterprise Linux 8.4 Telecommunications Update Service not down converted

Red Hat Enterprise Linux 8.4 Telecommunications Update Service not down converted

Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions not down converted

Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions not down converted

Red Hat Enterprise Linux 8.6 Extended Update Support not down converted

Red Hat Enterprise Linux 8.6 Extended Update Support not down converted

Red Hat Enterprise Linux 8.8 Extended Update Support not down converted

Red Hat Enterprise Linux 8.8 Extended Update Support not down converted

Red Hat Enterprise Linux 8.8 Extended Update Support not down converted

Red Hat Enterprise Linux 9 not down converted

Red Hat Enterprise Linux 9 not down converted

Red Hat Enterprise Linux 9.0 Extended Update Support not down converted

Red Hat Enterprise Linux 9.2 Extended Update Support not down converted

Red Hat Enterprise Linux 9.2 Extended Update Support not down converted

Red Hat Software Collections for Red Hat Enterprise Linux 7 not down converted

Red Hat Software Collections for Red Hat Enterprise Linux 7 not down converted

RHACS-3.74-RHEL-8 not down converted

RHACS-3.74-RHEL-8 not down converted

RHACS-3.74-RHEL-8 not down converted

RHACS-3.74-RHEL-8 not down converted

RHACS-3.74-RHEL-8 not down converted

RHACS-4.1-RHEL-8 not down converted

RHACS-4.1-RHEL-8 not down converted

RHACS-4.1-RHEL-8 not down converted

RHACS-4.1-RHEL-8 not down converted

RHACS-4.1-RHEL-8 not down converted

Red Hat Enterprise Linux 6 not down converted

Red Hat Enterprise Linux 7 not down converted

Red Hat Software Collections not down converted

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

debian,
postgresql,
redhat

Products

debian linux 11.0,
debian linux 12.0,
debian linux 8.0,
enterprise linux 8.0,
enterprise linux 9.0,
postgresql,
software collections -

References

Canonical

CVE-2023-39417 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-39417)

Miscellaneous

https://access.redhat.com/security/cve/CVE-2023-39417

https://bugzilla.redhat.com/show_bug.cgi?id=2228111

https://www.postgresql.org/support/security/CVE-2023-39417

https://security.netapp.com/advisory/ntap-20230915-0002/

https://lists.debian.org/debian-lts-announce/2023/10/msg00003.html

https://www.debian.org/security/2023/dsa-5554

https://www.debian.org/security/2023/dsa-5553

https://access.redhat.com/errata/RHSA-2023:7545

https://access.redhat.com/errata/RHSA-2023:7579

https://access.redhat.com/errata/RHSA-2023:7580

https://access.redhat.com/errata/RHSA-2023:7581

https://access.redhat.com/errata/RHSA-2023:7616

https://access.redhat.com/errata/RHSA-2023:7656

https://access.redhat.com/errata/RHSA-2023:7666

https://access.redhat.com/errata/RHSA-2023:7667

https://access.redhat.com/errata/RHSA-2023:7694

https://access.redhat.com/errata/RHSA-2023:7695

https://access.redhat.com/errata/RHSA-2023:7714

https://access.redhat.com/errata/RHSA-2023:7770

https://access.redhat.com/errata/RHSA-2023:7772

https://access.redhat.com/errata/RHSA-2023:7784

https://access.redhat.com/errata/RHSA-2023:7785

https://access.redhat.com/errata/RHSA-2023:7883

https://access.redhat.com/errata/RHSA-2023:7884

https://access.redhat.com/errata/RHSA-2023:7885

https://access.redhat.com/errata/RHSA-2024:0304

https://access.redhat.com/errata/RHSA-2024:0332

https://access.redhat.com/errata/RHSA-2024:0337

Rapid7

Technical Analysis