CVE-2007-2138

critical

Description

Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings."

References

Advisories
More

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10090

https://exchange.xforce.ibmcloud.com/vulnerabilities/33842

http://www.vupen.com/english/advisories/2007/1549

http://www.vupen.com/english/advisories/2007/1497

http://www.ubuntu.com/usn/usn-454-1

http://www.securitytracker.com/id?1017974

http://www.securityfocus.com/bid/23618

http://www.redhat.com/support/errata/RHSA-2007-0337.html

http://www.mandriva.com/security/advisories?name=MDKSA-2007:094

http://www.debian.org/security/2007/dsa-1311

http://www.debian.org/security/2007/dsa-1309

http://support.avaya.com/elmodocs2/security/ASA-2007-190.htm

http://security.gentoo.org/glsa/glsa-200705-12.xml

http://secunia.com/advisories/25725

http://secunia.com/advisories/25720

http://secunia.com/advisories/25717

http://secunia.com/advisories/25334

http://secunia.com/advisories/25238

http://secunia.com/advisories/25184

http://secunia.com/advisories/25058

http://secunia.com/advisories/25037

http://secunia.com/advisories/25019

http://secunia.com/advisories/25005

http://secunia.com/advisories/24999

http://secunia.com/advisories/24989

http://rhn.redhat.com/errata/RHSA-2007-0336.html

http://www.postgresql.org/support/security.html

http://www.postgresql.org/about/news.791

Details

Source: Mitre, NVD

Published: 2007-04-24

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.01201