Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.7
CVSSv3

CVE-2017-12172

Published: 22/11/2017 Updated: 09/10/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Postgresql

Vulnerability Summary

PostgreSQL 10.x prior to 10.1, 9.6.x prior to 9.6.6, 9.5.x prior to 9.5.10, 9.4.x prior to 9.4.15, 9.3.x prior to 9.3.20, and 9.2.x prior to 9.2.24 runs under a non-root operating system account, and database superusers have effective ability to run arbitrary code under that system account. PostgreSQL provides a script for starting the database server during system boot. Packages of PostgreSQL for many operating systems provide their own, packager-authored startup implementations. Several implementations use a log file name that the database superuser can replace with a symbolic link. As root, they open(), chmod() and/or chown() this log file name. This often suffices for the database superuser to escalate to root privileges when root starts the server.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

postgresql postgresql 9.6.5

postgresql postgresql 9.6.4

postgresql postgresql 9.6.3

postgresql postgresql 9.6.2

postgresql postgresql 9.4.14

postgresql postgresql 9.4.13

postgresql postgresql 9.4.12

postgresql postgresql 9.4.11

postgresql postgresql 9.4.10

postgresql postgresql 9.3.17

postgresql postgresql 9.3.16

postgresql postgresql 9.3.15

postgresql postgresql 9.3.14

postgresql postgresql 9.3

postgresql postgresql 9.2.23

postgresql postgresql 9.2.22

postgresql postgresql 9.2.21

postgresql postgresql 9.2.7

postgresql postgresql 9.2.6

postgresql postgresql 9.2.5

postgresql postgresql 9.2.3

postgresql postgresql 9.5.7

postgresql postgresql 9.5.6

postgresql postgresql 9.5.5

postgresql postgresql 9.5.4

postgresql postgresql 9.4.5

postgresql postgresql 9.4.4

postgresql postgresql 9.4.3

postgresql postgresql 9.4.2

postgresql postgresql 9.3.9

postgresql postgresql 9.3.8

postgresql postgresql 9.3.7

postgresql postgresql 9.3.6

postgresql postgresql 9.3.5

postgresql postgresql 9.2.16

postgresql postgresql 9.2.15

postgresql postgresql 9.2.14

postgresql postgresql 9.2.13

postgresql postgresql 10

postgresql postgresql 9.6.1

postgresql postgresql 9.5.9

postgresql postgresql 9.5.2

postgresql postgresql 9.5

postgresql postgresql 9.4.8

postgresql postgresql 9.4.6

postgresql postgresql 9.4.1

postgresql postgresql 9.3.19

postgresql postgresql 9.3.12

postgresql postgresql 9.3.10

postgresql postgresql 9.3.3

postgresql postgresql 9.3.1

postgresql postgresql 9.2.20

postgresql postgresql 9.2.18

postgresql postgresql 9.2.11

postgresql postgresql 9.2.9

postgresql postgresql 9.2.2

postgresql postgresql 9.2

postgresql postgresql 9.6

postgresql postgresql 9.5.8

postgresql postgresql 9.5.3

postgresql postgresql 9.5.1

postgresql postgresql 9.4.9

postgresql postgresql 9.4.7

postgresql postgresql 9.4

postgresql postgresql 9.3.18

postgresql postgresql 9.3.13

postgresql postgresql 9.3.11

postgresql postgresql 9.3.4

postgresql postgresql 9.3.2

postgresql postgresql 9.2.19

postgresql postgresql 9.2.17

postgresql postgresql 9.2.12

postgresql postgresql 9.2.10

postgresql postgresql 9.2.8

postgresql postgresql 9.2.4

postgresql postgresql 9.2.1

Vendor Advisories

Red Hat: Moderate: rh-postgresql94-postgresql security update
Synopsis Moderate: rh-postgresql94-postgresql security update Type/Severity Security Advisory: Moderate Topic An update for rh-postgresql94-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabil ...
Red Hat: Moderate: rh-postgresql95-postgresql security update
Synopsis Moderate: rh-postgresql95-postgresql security update Type/Severity Security Advisory: Moderate Topic An update for rh-postgresql95-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabil ...
Red Hat: Moderate: rh-postgresql96-postgresql security update
Synopsis Moderate: rh-postgresql96-postgresql security update Type/Severity Security Advisory: Moderate Topic An update for rh-postgresql96-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabil ...
Red Hat: Moderate: postgresql security update
Synopsis Moderate: postgresql security update Type/Severity Security Advisory: Moderate Topic An update for postgresql is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base sco ...
Amazon Linux AMI: ALAS-2017-930
Privilege escalation flaws were found in the initialization scripts of PostgreSQL A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine(CVE-2017-12172) INSERT ON CONFLICT DO UPDATE commands in PostgreSQL disclose table contents that the invoker lacks privilege to read Th ...
Amazon Linux AMI: ALAS-2017-931
Privilege escalation flaws were found in the initialization scripts of PostgreSQL A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine( CVE-2017-12172) Invalid json_populate_recordset or jsonb_populate_recordset function calls in PostgreSQL can crash the server or disclose a ...
Red Hat: CVE-2017-12172
Privilege escalation flaws were found in the initialization scripts of PostgreSQL An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine ...
Arch Linux Issues:
A vulnerability has been discovered in PostgreSQL when the startup log file for the postmaster (in newer releases, "postgres") process was opened while the process was still owned by root With this setup, the database owner could specify a file that they did not have access to and cause the file to be corrupted with logged data This vulnerability ...
PostgreSQL CVE: CVE-2017-12172
For more information about PostgreSQL versioning, please visit the versioning page ...

References

CWE-59https://www.postgresql.org/support/security/https://www.postgresql.org/about/news/1801/http://www.securitytracker.com/id/1039752http://www.securityfocus.com/bid/101949https://access.redhat.com/errata/RHSA-2017:3405https://access.redhat.com/errata/RHSA-2017:3404https://access.redhat.com/errata/RHSA-2017:3403https://access.redhat.com/errata/RHSA-2017:3402https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2017:3403https://www.postgresql.org/support/security/CVE-2017-12172/https://alas.aws.amazon.com/ALAS-2017-930.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmwareCVE-2023-52866CVE-2024-4367CVE-2024-1721CVE-2023-34992XML injectionCVE-2023-52817SQLCVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook