#VU95605 Time-of-check Time-of-use (TOCTOU) Race Condition in PostgreSQL


Vulnerability identifier: #VU95605

Vulnerability risk: Low

CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-7348

CWE-ID: CWE-367

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PostgreSQL
Server applications / Database software

Vendor: PostgreSQL Global Development Group

Description

The vulnerability allows a remote user to escalate privileges within the database.

The vulnerability exists due to a race condition when executing concurrent pg_dump sessions. A remote user with privileges to create and drop non-temporary objects can execute arbitrary SQL commands with the privileges of the role running pg_dump (which is often a superuser).

Mitigation
Install updates from vendor's website.

Vulnerable software versions

PostgreSQL: 16.0 - 16.3, 15.0 - 15.7, 14.0 - 14.12, 13.0 - 13.15, 12 - 12.19

External links
http://www.postgresql.org/support/security/CVE-2024-7348/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Red Hat Enterprise Linux 7 Extended Lifecycle Support update for postgresql
SUSE update for postgresql16
Multiple vulnerabilities in IBM Storage Scale System
Ubuntu update for postgresql-10
SUSE update for postgresql16
Multiple vulnerabilities in IBM Storage Protect Plus
Gentoo update for PostgreSQL
Ubuntu update for postgresql-9.5
Red Hat Enterprise Linux 8 update for the postgresql:12 module
Red Hat Enterprise Linux 8 update for the postgresql:13 module