CVE-2017-7485 : In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and

In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3, it was found that the PGREQUIRESSL environment variable was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.

Published 2017-05-12 19:29:00

Updated 2019-10-03 00:03:26

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2017-7485

Postgresql » Postgresql » Version: 9.3.1
cpe:2.3:a:postgresql:postgresql:9.3.1:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3
cpe:2.3:a:postgresql:postgresql:9.3:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.2
cpe:2.3:a:postgresql:postgresql:9.3.2:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.1
cpe:2.3:a:postgresql:postgresql:9.4.1:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.6
cpe:2.3:a:postgresql:postgresql:9.3.6:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.3
cpe:2.3:a:postgresql:postgresql:9.3.3:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.4
cpe:2.3:a:postgresql:postgresql:9.3.4:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.5
cpe:2.3:a:postgresql:postgresql:9.3.5:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.7
cpe:2.3:a:postgresql:postgresql:9.3.7:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.8
cpe:2.3:a:postgresql:postgresql:9.3.8:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.3
cpe:2.3:a:postgresql:postgresql:9.4.3:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.4
cpe:2.3:a:postgresql:postgresql:9.4.4:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.2
cpe:2.3:a:postgresql:postgresql:9.4.2:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.9
cpe:2.3:a:postgresql:postgresql:9.3.9:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4
cpe:2.3:a:postgresql:postgresql:9.4:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5
cpe:2.3:a:postgresql:postgresql:9.5:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.5
cpe:2.3:a:postgresql:postgresql:9.4.5:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.1
cpe:2.3:a:postgresql:postgresql:9.5.1:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.2
cpe:2.3:a:postgresql:postgresql:9.5.2:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.8
cpe:2.3:a:postgresql:postgresql:9.4.8:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.7
cpe:2.3:a:postgresql:postgresql:9.4.7:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.13
cpe:2.3:a:postgresql:postgresql:9.3.13:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.6
cpe:2.3:a:postgresql:postgresql:9.4.6:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.12
cpe:2.3:a:postgresql:postgresql:9.3.12:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.11
cpe:2.3:a:postgresql:postgresql:9.3.11:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.3
cpe:2.3:a:postgresql:postgresql:9.5.3:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.10
cpe:2.3:a:postgresql:postgresql:9.3.10:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.6.2
cpe:2.3:a:postgresql:postgresql:9.6.2:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.11
cpe:2.3:a:postgresql:postgresql:9.4.11:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.10
cpe:2.3:a:postgresql:postgresql:9.4.10:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.16
cpe:2.3:a:postgresql:postgresql:9.3.16:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.15
cpe:2.3:a:postgresql:postgresql:9.3.15:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.3.14
cpe:2.3:a:postgresql:postgresql:9.3.14:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.6
cpe:2.3:a:postgresql:postgresql:9.5.6:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.5
cpe:2.3:a:postgresql:postgresql:9.5.5:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.5.4
cpe:2.3:a:postgresql:postgresql:9.5.4:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.6.1
cpe:2.3:a:postgresql:postgresql:9.6.1:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.6
cpe:2.3:a:postgresql:postgresql:9.6:*:*:*:*:*:*:*
Matching versions
Postgresql » Postgresql » Version: 9.4.9
cpe:2.3:a:postgresql:postgresql:9.4.9:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2017-7485

Top countries where our scanners detected CVE-2017-7485

Top open port discovered on systems with this issue 5432

IPs affected by CVE-2017-7485 115,464

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2017-7485!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2017-7485

EPSS FAQ

1.32%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 79 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-7485

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
5.9	MEDIUM	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N	2.2	3.6	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2017-7485

CWE-311 Missing Encryption of Sensitive Data

The product does not encrypt sensitive or critical information before storage or transmission.

Assigned by: nvd@nist.gov (Primary)
CWE-390 Detection of Error Condition Without Action

The product detects a specific error, but takes no actions to handle the error.

Assigned by: secalert@redhat.com (Secondary)

References for CVE-2017-7485

http://www.securitytracker.com/id/1038476

PostgreSQL Bugs Let Remote Users Access and Modify Data in Transit and Let Remote Authenticated Users Obtain Password and Other Potentially Sensitive Information - SecurityTracker

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2017:2425

RHSA-2017:2425 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.debian.org/security/2017/dsa-3851

Debian -- Security Information -- DSA-3851-1 postgresql-9.4

CVEs referencing this url
https://security.gentoo.org/glsa/201710-06

PostgreSQL: Multiple vulnerabilities (GLSA 201710-06) — Gentoo security

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2017:1678

RHSA-2017:1678 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
https://www.postgresql.org/about/news/1746/

PostgreSQL: 2017-05-11 Security Update Release
Vendor Advisory

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2017:1677

RHSA-2017:1677 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.securityfocus.com/bid/98461

PostgreSQL CVE-2017-7485 Man in the Middle Security Bypass Vulnerability
Third Party Advisory;VDB Entry
https://access.redhat.com/errata/RHSA-2017:1838

RHSA-2017:1838 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url