CVE-2024-27304

Medienbericht

EPSS 1.11%
Veröffentlicht 06.03.2024 19:15:08
Zuletzt bearbeitet 21.05.2026 19:58:35
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

pgx SQL Injection via Protocol Message Size Overflow

pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control. The problem is resolved in v4.18.2 and v5.5.4. As a workaround, reject user input large enough to cause a single query or bind message to exceed 4 GB in size.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 10

NVD 3 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Jackc ≫ Pgproto3 SwPlatformgo Version < 2.3.3

Jackc ≫ Pgx SwPlatformgo Version < 4.18.2

Jackc ≫ Pgx SwPlatformgo Version >= 5.0.0 < 5.5.4

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.11%	0.616

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

https://github.com/jackc/pgx/commit/f94eb0e2f96782042c96801b5ac448f44f0a81df

Patch

https://github.com/jackc/pgproto3/commit/945c2126f6db8f3bea7eeebe307c01fe92bca007

Patch

https://github.com/jackc/pgproto3/security/advisories/GHSA-7jwh-3vrq-q3m8

Vendor Advisory

https://github.com/jackc/pgx/commit/adbb38f298c76e283ffc7c7a3f571036fea47fd4

Patch

https://github.com/jackc/pgx/commit/c543134753a0c5d22881c12404025724cb05ffd8

Patch

https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv

Vendor Advisory

https://www.youtube.com/watch?v=Tfg1B8u1yvE

Press/Media Coverage

https://nvd.nist.gov/vuln/detail/CVE-2024-27304

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-27304

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-27304

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-27304