IBM3F8EBF0B2736BFAA90B8CE738DD62A6D81F70C1046B29A44385A1CEC02AAB0EFSecurity Bulletin: EDB Postgres Advanced Server with IBM and IBM Data Management Platform for EDB Postgres (Standard or Enterprise) for IBM Cloud Pak for Data are vulnerable to SQL injection from "man-in-the-middle" attack.
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
56.1%
Summary
When the EDB Postgres Advanced Server with IBM, IBM Data Management Platform for EDB Postgres Standard for IBM Cloud Pak for Data, and IBM Data Management Platform for EDB Postgres Enterprise for IBM Cloud Pak for Data are configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption.
Vulnerability Details
CVEID:CVE-2021-23214
**DESCRIPTION:**PostgreSQL is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements when the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, which could allow the attacker to view, add, modify or delete information in the back-end database.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/213379 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| EDB Postgres Advanced Server with IBM | 13.1 |
| IBM Data Management Platform for EDB Postgres Standard for IBM Cloud Pak for Data | 2.0, 4.0.x |
| IBM Data Management Platform for EDB Postgres Enterprise for IBM Cloud Pak for Data | 2.0, 4.0.x |
Remediation/Fixes
| Affected version | Version | Remediation/Fix/Instructions |
|---|---|---|
| EDB Postgres Advanced Server with IBM | 13.1 | Download v13.5 and install |
| IBM Data Management Platform for EDB Postgres Standard for IBM Cloud Pak for Data | 2.0, 4.0.x | Upgrade to version 4.0.4 via the steps outlined in the Cloud Pak for Data Documentation. |
| IBM Data Management Platform for EDB Postgres Enterprise for IBM Cloud Pak for Data | 2.0, 4.0.x | Upgrade to version 4.0.4 via the steps outlined in the Cloud Pak for Data Documentation. |
Workarounds and Mitigations
IBM strongly recommends addressing the vulnerability now by upgrading to EDB Postgres Advanced Server with IBM v13.5 and upgrading IBM Data Management Platform for EDB Postgres (Standard or Enterprise) for IBM Cloud Pak for Data to version 4.0.4.
Related
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
56.1%