CVE-2007-2138
UnknownEPSS 3.18%
Last modified
CVE-2007-2138 is a vulnerability of currently unknown severity. Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings.". EPSS estimates a 3.18% chance of exploitation in the next 30 days.
Description
Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Postgresql | Postgresql | < 7.3.19 |
| Postgresql | Postgresql | >= 7.4, < 7.4.17 |
| Postgresql | Postgresql | >= 8.0, < 8.0.13 |
| Postgresql | Postgresql | >= 8.1, < 8.1.9 |
| Postgresql | Postgresql | >= 8.2, < 8.2.4 |
| Debian | Debian Linux | 3.1 |
| Debian | Debian Linux | 4.0 |
| Canonical | Ubuntu Linux | 6.06 |
| Canonical | Ubuntu Linux | 6.10 |
| Canonical | Ubuntu Linux | 7.04 |
References
- http://rhn.redhat.com/errata/RHSA-2007-0336.htmlThird Party Advisory
- http://secunia.com/advisories/24989Third Party Advisory
- http://secunia.com/advisories/24999Third Party Advisory
- http://secunia.com/advisories/25005Third Party Advisory
- http://secunia.com/advisories/25019Third Party Advisory
- http://secunia.com/advisories/25037Third Party Advisory
- http://secunia.com/advisories/25058Third Party Advisory
- http://secunia.com/advisories/25184Third Party Advisory
- http://secunia.com/advisories/25238Third Party Advisory
- http://secunia.com/advisories/25334Third Party Advisory
- http://secunia.com/advisories/25717Third Party Advisory
- http://secunia.com/advisories/25720Third Party Advisory
- http://secunia.com/advisories/25725Third Party Advisory
- http://security.gentoo.org/glsa/glsa-200705-12.xmlThird Party Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2007-190.htmThird Party Advisory
- http://www.debian.org/security/2007/dsa-1309Third Party Advisory
- http://www.debian.org/security/2007/dsa-1311Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:094Third Party Advisory
- http://www.postgresql.org/about/news.791Patch, Vendor Advisory
- http://www.postgresql.org/support/security.htmlPatch, Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2007-0337.htmlThird Party Advisory
- http://www.securityfocus.com/bid/23618Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id?1017974Third Party Advisory, VDB Entry
- http://www.trustix.org/errata/2007/0015/Broken Link
- http://www.ubuntu.com/usn/usn-454-1Third Party Advisory
- http://www.vupen.com/english/advisories/2007/1497Third Party Advisory
- http://www.vupen.com/english/advisories/2007/1549Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33842Third Party Advisory, VDB Entry
- https://issues.rpath.com/browse/RPL-1292Broken Link
- http://rhn.redhat.com/errata/RHSA-2007-0336.htmlThird Party Advisory
- http://secunia.com/advisories/24989Third Party Advisory
- http://secunia.com/advisories/24999Third Party Advisory
- http://secunia.com/advisories/25005Third Party Advisory
- http://secunia.com/advisories/25019Third Party Advisory
- http://secunia.com/advisories/25037Third Party Advisory
- http://secunia.com/advisories/25058Third Party Advisory
- http://secunia.com/advisories/25184Third Party Advisory
- http://secunia.com/advisories/25238Third Party Advisory
- http://secunia.com/advisories/25334Third Party Advisory
- http://secunia.com/advisories/25717Third Party Advisory
- http://secunia.com/advisories/25720Third Party Advisory
- http://secunia.com/advisories/25725Third Party Advisory
- http://security.gentoo.org/glsa/glsa-200705-12.xmlThird Party Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2007-190.htmThird Party Advisory
- http://www.debian.org/security/2007/dsa-1309Third Party Advisory
- http://www.debian.org/security/2007/dsa-1311Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:094Third Party Advisory
- http://www.postgresql.org/about/news.791Patch, Vendor Advisory
- http://www.postgresql.org/support/security.htmlPatch, Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2007-0337.htmlThird Party Advisory
- http://www.securityfocus.com/bid/23618Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id?1017974Third Party Advisory, VDB Entry
- http://www.trustix.org/errata/2007/0015/Broken Link
- http://www.ubuntu.com/usn/usn-454-1Third Party Advisory
- http://www.vupen.com/english/advisories/2007/1497Third Party Advisory
- http://www.vupen.com/english/advisories/2007/1549Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33842Third Party Advisory, VDB Entry
- https://issues.rpath.com/browse/RPL-1292Broken Link
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-2138?
Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."
How severe is CVE-2007-2138?
Severity scoring for CVE-2007-2138 is pending analysis. The EPSS model estimates a 3.18% probability of exploitation in the next 30 days.
How do I fix CVE-2007-2138?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2007-2138?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST