Lucene search

EDBVULNRICHMENT:CVE-2024-4545

HistoryMay 09, 2024 - 6:12 p.m.

CVE-2024-4545 EDB Postgres Advanced Server (EPAS) authenticated file read permissions bypass using edbldr

2024-05-0918:12:18

CWE-269

EDB

github.com

cve-2024-4545; edb postgres advanced server; file read permissions bypass; edbldr; low privilege users; pg_read_server_files; access control

7.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

All versions of EnterpriseDB Postgres Advanced Server (EPAS) from 15.0 prior to 15.7.0 and from 16.0 prior to 16.3.0 may allow users using edbldr to bypass role permissions from pg_read_server_files. This could allow low privilege users to read files to which they would not otherwise have access.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "EDB Postgres Advanced Server",
    "vendor": "EnterpriseDB",
    "versions": [
      {
        "lessThan": "15.7.0",
        "status": "affected",
        "version": "15.0",
        "versionType": "custom"
      },
      {
        "lessThan": "16.3.0",
        "status": "affected",
        "version": "16.0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.enterprisedb.com/docs/epas/15/epas_rel_notes/

www.enterprisedb.com/docs/epas/latest/epas_rel_notes/

www.enterprisedb.com/docs/security/advisories/cve20244545/

7.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

Related for VULNRICHMENT:CVE-2024-4545