CVE-2017-15097
6.5
CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Summary
Privilege escalation flaws were found in the Red Hat initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | postgresql init script | all | affected |
Weaknesses
- CWE-59: CWE-59
ADP Enrichment
CVE Program Container
Additional References
- https://access.redhat.com/errata/RHSA-2017:3402
- https://access.redhat.com/errata/RHSA-2017:3403
- https://access.redhat.com/errata/RHSA-2017:3405
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15097
- http://www.securitytracker.com/id/1039983
- https://access.redhat.com/errata/RHSA-2017:3404
References
- https://access.redhat.com/errata/RHSA-2017:3402
- https://access.redhat.com/errata/RHSA-2017:3403
- https://access.redhat.com/errata/RHSA-2017:3405
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-15097
- http://www.securitytracker.com/id/1039983
- https://access.redhat.com/errata/RHSA-2017:3404
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.