CVE Vulnerabilities

CVE-2020-25696

Permissive List of Allowed Inputs

Published: Nov 23, 2020 | Modified: Nov 07, 2023
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
7.6 HIGH
AV:N/AC:H/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
7.5 MODERATE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Ubuntu
MEDIUM

A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. If an interactive psql session uses gset when querying a compromised server, the attacker can execute arbitrary code as the operating system account running psql. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Weakness

The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are explicitly allowed by policy because the inputs are assumed to be safe, but the list is too permissive - that is, it allows an input that is unsafe, leading to resultant weaknesses.

Affected Software

Name Vendor Start Version End Version
Postgresql Postgresql 9.5.0 (including) 9.5.24 (excluding)
Postgresql Postgresql 9.6.0 (including) 9.6.20 (excluding)
Postgresql Postgresql 10.0 (including) 10.15 (excluding)
Postgresql Postgresql 11.0 (including) 11.10 (excluding)
Postgresql Postgresql 12.0 (including) 12.5 (excluding)
Postgresql Postgresql 13.0 (including) 13.1 (excluding)
Red Hat Enterprise Linux 8 RedHat libpq-0:12.5-1.el8_3 *
Red Hat Enterprise Linux 8 RedHat postgresql:10-8030020201201142418.229f0a1c *
Red Hat Enterprise Linux 8 RedHat postgresql:9.6-8030020201201133334.229f0a1c *
Red Hat Enterprise Linux 8 RedHat postgresql:12-8030020201207110000.229f0a1c *
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions RedHat libpq-0:12.5-1.el8_0 *
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions RedHat postgresql:9.6-8000020201214122017.f8e95b4e *
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions RedHat postgresql:10-8000020201214113918.f8e95b4e *
Red Hat Enterprise Linux 8.1 Extended Update Support RedHat libpq-0:12.5-2.el8_1 *
Red Hat Enterprise Linux 8.1 Extended Update Support RedHat postgresql:10-8010020201214112129.c27ad7f8 *
Red Hat Enterprise Linux 8.1 Extended Update Support RedHat postgresql:9.6-8010020201214134447.c27ad7f8 *
Red Hat Enterprise Linux 8.2 Extended Update Support RedHat libpq-0:12.5-1.el8_2 *
Red Hat Enterprise Linux 8.2 Extended Update Support RedHat postgresql:10-8020020201201142418.4cda2c84 *
Red Hat Enterprise Linux 8.2 Extended Update Support RedHat postgresql:12-8020020201207110224.4cda2c84 *
Red Hat Enterprise Linux 8.2 Extended Update Support RedHat postgresql:9.6-8020020201201133334.4cda2c84 *
Red Hat Software Collections for Red Hat Enterprise Linux 7 RedHat rh-postgresql10-postgresql-0:10.15-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7 RedHat rh-postgresql12-postgresql-0:12.5-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS RedHat rh-postgresql10-postgresql-0:10.15-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS RedHat rh-postgresql12-postgresql-0:12.5-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS RedHat rh-postgresql10-postgresql-0:10.15-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS RedHat rh-postgresql12-postgresql-0:12.5-1.el7 *
Postgresql-10 Ubuntu bionic *
Postgresql-10 Ubuntu upstream *
Postgresql-12 Ubuntu focal *
Postgresql-12 Ubuntu groovy *
Postgresql-12 Ubuntu trusty *
Postgresql-12 Ubuntu upstream *
Postgresql-9.1 Ubuntu precise/esm *
Postgresql-9.1 Ubuntu trusty *
Postgresql-9.3 Ubuntu trusty *
Postgresql-9.3 Ubuntu trusty/esm *
Postgresql-9.5 Ubuntu upstream *
Postgresql-9.5 Ubuntu xenial *

References