PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
25412
13 February 2025
13 February 2025
CLOSED
LOW
9.8 -- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVE-2024-1597
|
Brocade Security Advisory ID |
BSA-2025-2635 |
|
Component |
PostgreSQL JDBC Driver |
|
|
|
Summary
pgjdbc, the PostgreSQL JDBC Driver, allows an attacker to inject SQL if using PreferQueryMode=SIMPLE. Note, this is not the default. In the default mode there is no vulnerability. A placeholder for a numeric value must be immediately preceded by a minus. There must be a second placeholder for a string value after the first placeholder; both must be on the same line. By constructing a matching string payload, the attacker can inject SQL to alter the query, bypassing the protections that parameterized queries bring against SQL Injection attacks. Versions before 42.7.2, 42.6.1, 42.5.5, 42.4.4, 42.3.9, and 42.2.28 are affected.
Products Affected
No Brocade products are affected
Products Not Affected
Brocade Fabric OS
[VEX Justification: Component_not_present]
Brocade ASCG
[VEX Justification: Component_not_present]
Brocade SANnav
[VEX Justification: Vulnerable_code_cannot_be_contolled_by_adversary]
Solution
While not exploitable, Security update provided in SANnav 2.3.1b and 2.4.0
Revision History
|
Version |
Change |
Date |
|
1.0 |
Initial Publication |
February 13, 2025 |
Disclaimer
THIS DOCUMENT IS PROVIDED ON AN AS-IS BASIS SOLELY FOR INFORMATIONAL PURPOSES AND DOES NOT IMPLY ANY KIND OF GUARANTY OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. YOUR USE OF THE INFORMATION CONTAINED HEREIN IS AT YOUR OWN RISK. ALL INFORMATION PROVIDED HEREIN IS BASED ON BROCADE'S CURRENT KNOWLEDGE AND UNDERSTANDING OF THE VULNERABILITY AND IMPACT TO BROCADE HARDWARE AND SOFTWARE PRODUCTS. BROCADE RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.