CVE-2017-14798

A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.

CVSS v3 7.0 HIGH
CVSS v2.0 6.9 MEDIUM

7.0^/10

CVSS v3 : HIGH

Vector : AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 1.0 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.9^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://lists.suse.com/pipermail/sle-security-updates/2017-November/003420.html
https://bugzilla.suse.com/show_bug.cgi?id=1062722
https://www.exploit-db.com/exploits/45184/
https://www.suse.com/de-de/security/cve/CVE-2017-14798/

Configurations

Configuration 1 (hide)

cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp3:*:*:*:*:*:*

History

07 Nov 2023, 02:39

Type	Values Removed	Values Added
References	~~(CONFIRM) https://bugzilla.suse.com/show_bug.cgi?id=1062722 - Issue Tracking~~	() https://bugzilla.suse.com/show_bug.cgi?id=1062722 -
References	~~(EXPLOIT-DB) https://www.exploit-db.com/exploits/45184/ -~~	() https://www.exploit-db.com/exploits/45184/ -
References	~~(SUSE) http://lists.suse.com/pipermail/sle-security-updates/2017-November/003420.html - Issue Tracking, Vendor Advisory~~	() http://lists.suse.com/pipermail/sle-security-updates/2017-November/003420.html -
References	~~(CONFIRM) https://www.suse.com/de-de/security/cve/CVE-2017-14798/ - Vendor Advisory~~	() https://www.suse.com/de-de/security/cve/CVE-2017-14798/ -

Information

Published : 2018-03-01 20:29

Updated : 2023-12-10 12:30

NVD link : CVE-2017-14798

Mitre link : CVE-2017-14798

CVE.ORG link : CVE-2017-14798

JSON object : View

Products Affected

postgresql

postgresql

suse

suse_linux_enterprise_server

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CWE-61

UNIX Symbolic Link (Symlink) Following

{"id": "CVE-2017-14798", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.0, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.0}, {"type": "Secondary", "source": "security@opentext.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.3}]}, "published": "2018-03-01T20:29:00.210", "references": [{"url": "http://lists.suse.com/pipermail/sle-security-updates/2017-November/003420.html", "source": "security@opentext.com"}, {"url": "https://bugzilla.suse.com/show_bug.cgi?id=1062722", "source": "security@opentext.com"}, {"url": "https://www.exploit-db.com/exploits/45184/", "source": "security@opentext.com"}, {"url": "https://www.suse.com/de-de/security/cve/CVE-2017-14798/", "source": "security@opentext.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}, {"type": "Secondary", "source": "security@opentext.com", "description": [{"lang": "en", "value": "CWE-61"}]}], "descriptions": [{"lang": "en", "value": "A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root."}, {"lang": "es", "value": "Una condici\u00f3n de carrera en el script init de postgresql podr\u00eda ser aprovechada por atacantes para acceder a la cuenta postgresql y escalar sus privilegios a root."}], "lastModified": "2023-11-07T02:39:11.377", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBA74A80-297A-441C-B12D-799AAB5BB669", "versionEndExcluding": "9.4-0.5.3.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD4BBD63-E038-45CE-9537-D96831E99A06"}], "operator": "OR"}]}], "sourceIdentifier": "security@opentext.com"}