CVE-2018-10936

HIGH

postgresql-jdbc <42.2.5 - SSL Man-In-The-Middle

Title source: llm

Description

A weakness was found in postgresql-jdbc before version 42.2.5. It was possible to provide an SSL Factory and not check the host name if a host name verifier was not provided to the driver. This could lead to a condition where a man-in-the-middle attacker could masquerade as a trusted server by providing a certificate for the wrong host, as long as it was signed by a trusted CA.

Exploits (3)

nomisec WRITEUP

by dawetmaster · poc

https://github.com/dawetmaster/CVE-2018-10936-pgjdbc-vulnerable

View Code ZIP pw:eip

nomisec WRITEUP

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2018-10936-pgjdbc-vulnerable

View Code ZIP pw:eip

nomisec STUB

by tafamace · poc

https://github.com/tafamace/CVE-2018-10936

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/105220

[Issue Tracking, Mitigation, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10936

[Mailing List] https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E

[Vendor Advisory] https://www.postgresql.org/about/news/1883/

Scores

CVSS v3 8.1

EPSS 0.0085

EPSS Percentile 74.9%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-297

Status published

Products (4)

org.postgresql/pgjdbc-aggregate 0 - 42.2.5Maven

postgresql/postgresql_jdbc_driver < 42.2.5

redhat/enterprise_linux 6.0

redhat/enterprise_linux 7.0

Published Aug 30, 2018

Tracked Since Feb 18, 2026