CVE-2020-25695

high-risk

Published 2020-11-16

A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Do I need to act?

23.8% chance of exploitation in next 30 days

EPSS score — higher than 76% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (2)

Postgresql

Debian Linux

Affected Vendors

Debian Postgresql

References (10)

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1894425

Mailing List https://lists.debian.org/debian-lts-announce/2020/12/msg00005.html

Third Party Advisory https://security.gentoo.org/glsa/202012-07

Third Party Advisory https://security.netapp.com/advisory/ntap-20201202-0003/

Vendor Advisory https://www.postgresql.org/support/security/

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1894425

Mailing List https://lists.debian.org/debian-lts-announce/2020/12/msg00005.html

Third Party Advisory https://security.gentoo.org/glsa/202012-07

Third Party Advisory https://security.netapp.com/advisory/ntap-20201202-0003/

Vendor Advisory https://www.postgresql.org/support/security/

/ 100

high-risk

Severity 30/34 · Critical

Exploitability 14/34 · Moderate

Exposure 7/34 · Low