Vulnerability Description
Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security definer functions or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise-forbidden reads and modifications. This affects only databases that have used CREATE POLICY to define a row security policy.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Postgresql | Postgresql | >= 11.0, < 11.20 |
| Redhat | Software Collections | - |
| Redhat | Enterprise Linux | 8.0 |
| Fedoraproject | Fedora | 38 |
Related Weaknesses (CWE)
References
- https://access.redhat.com/security/cve/CVE-2023-2455Third Party Advisory
- https://security.netapp.com/advisory/ntap-20230706-0006/
- https://www.postgresql.org/support/security/CVE-2023-2455/Vendor Advisory
- https://access.redhat.com/security/cve/CVE-2023-2455Third Party Advisory
- https://security.netapp.com/advisory/ntap-20230706-0006/
- https://www.postgresql.org/support/security/CVE-2023-2455/Vendor Advisory
FAQ
What is CVE-2023-2455?
CVE-2023-2455 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is pla...
How severe is CVE-2023-2455?
CVE-2023-2455 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-2455?
Check the references section above for vendor advisories and patch information. Affected products include: Postgresql Postgresql, Redhat Software Collections, Redhat Enterprise Linux, Fedoraproject Fedora.