CVE-2022-21724 Information
Description
pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attacked when attacker control the jdbc url or properties. pgjdbc instantiates plugin instances based on class names provided via authenticationPluginClassName sslhostnameverifier socketFactory sslfactory sslpasswordcallback connection properties. However the driver did not verify if the class implements the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary classes. Users using plugins are advised to upgrade. There are no known workarounds for this issue.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-v7wg-cpwc-24m4
https://github.com/pgjdbc/pgjdbc/commit/f4d0ed69c0b3aae8531d83d6af4c57f22312c813
https://security.netapp.com/advisory/ntap-20220311-0005/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BVEO7BEFXPBVHSPYL3YKQWZI6DYXQLFS/
https://lists.debian.org/debian-lts-announce/2022/05/msg00027.html
pgjdbc
is
the
offical
PostgreSQL
JDBC
Driver.
A
security
hole
was
found
in
the
jdbc
driver
for
postgresql
database
while
doing
security
research.
The
system
using
the
postgresql
library
will
be
attacked
when
attacker
control
the
jdbc
url
or
properties.
pgjdbc
instantiates
plugin
instances
based
on
class
names
provided
via
authenticationPluginClassName
sslhostnameverifier
socketFactory
sslfactory
sslpasswordcallback
connection
properties.
However
the
driver
did
not
verify
if
the
class
implements
the
expected
interface
before
instantiating
the
class.
This
can
lead
to
code
execution
loaded
via
arbitrary
classes.
Users
using
plugins
are
advised
to
upgrade.
There
are
no
known
workarounds
for
this
issue.
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8
Share on: