CVE-2022-26520

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions pgjdbc versions prior to 42.3.3

Description The issue is related to the creation of arbitrary files through the loggerFile and loggerLevel connection properties in the pgjdbc driver. An attacker who controls the jdbc URL or properties can call java.util.logging.FileHandler to write to arbitrary files. This could allow an attacker to create an executable JSP file under a Tomcat web root, potentially leading to remote code execution. The vendor's position is that this is not a vulnerability in the pgjdbc driver itself, but rather a vulnerability in any application that uses the pgjdbc driver with untrusted connection properties.

Recommendations For versions prior to 42.3.3, consider updating to version 42.3.3 or later, where the loggerFile implementation has been removed. As a temporary workaround, sanitize the inputs to the driver to prevent misuse of the loggerFile and loggerLevel connection properties. Restrict access to the jdbc URL and connection properties to prevent untrusted users from specifying arbitrary values.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

ALT-PU-2023-8458

BDU:2024-06539

BIT-POSTGRESQL-JDBC-DRIVER-2022-26520

CVE-2022-26520

DSA-5196-1

GHSA-673J-QM5F-XPV8

GHSA-727H-HRW8-JG8Q

OPENSUSE-SU-2022_2655-1

OPENSUSE-SU-2024:12126-1

SUSE-FU-2022:2794-1

SUSE-SU-2022:2143-1

SUSE-SU-2022:2145-1

SUSE-SU-2022:2655-1

SUSE-SU-2022_2655-1

Affected Products

Alt Linux

Astra Linux

Red Os

Suse

Apache Tomcat

CVE-2022-26520

Weakness Enumeration

Related Identifiers

Affected Products

References · 80