Vulnerability Details CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.028
EPSS Ranking 85.3%
CVSS Severity
CVSS v3 Score 8.0
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/105923
- http://www.securitytracker.com/id/1042144
- https://access.redhat.com/errata/RHSA-2018:3757
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16850
- https://security.gentoo.org/glsa/201811-24
- https://usn.ubuntu.com/3818-1/
- https://www.postgresql.org/about/news/1905/
- http://www.securityfocus.com/bid/105923
- http://www.securitytracker.com/id/1042144
- https://access.redhat.com/errata/RHSA-2018:3757
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16850
- https://security.gentoo.org/glsa/201811-24
- https://usn.ubuntu.com/3818-1/
- https://www.postgresql.org/about/news/1905/
Products affected by CVE-2018-16850
-
cpe:2.3:a:postgresql:postgresql:10.0
-
cpe:2.3:a:postgresql:postgresql:10.1
-
cpe:2.3:a:postgresql:postgresql:10.2
-
cpe:2.3:a:postgresql:postgresql:10.3
-
cpe:2.3:a:postgresql:postgresql:10.4
-
cpe:2.3:a:postgresql:postgresql:10.5
-
cpe:2.3:a:postgresql:postgresql:11.0
-
cpe:2.3:o:canonical:ubuntu_linux:18.04
-
cpe:2.3:o:canonical:ubuntu_linux:18.10
-
cpe:2.3:o:redhat:enterprise_linux:7.0
-
cpe:2.3:o:redhat:enterprise_linux:7.4
-
cpe:2.3:o:redhat:enterprise_linux:7.5
-
cpe:2.3:o:redhat:enterprise_linux:7.6