{"api_version":"1","generated_at":"2026-04-23T02:36:41+00:00","cve":"CVE-2021-3677","urls":{"html":"https://cve.report/CVE-2021-3677","api":"https://cve.report/api/cve/CVE-2021-3677.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2021-3677","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2021-3677"},"summary":{"title":"CVE-2021-3677","description":"A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include max_worker_processes=0, the known versions of this attack are infeasible. However, undiscovered variants of the attack may be independent of that setting.","state":"PUBLIC","assigner":"secalert@redhat.com","published_at":"2022-03-02 23:15:00","updated_at":"2023-01-31 17:29:00"},"problem_types":["CWE-200"],"metrics":[],"references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001857","name":"https://bugzilla.redhat.com/show_bug.cgi?id=2001857","refsource":"MISC","tags":[],"title":"2001857 – (CVE-2021-3677) CVE-2021-3677 postgresql: memory disclosure in certain queries","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.postgresql.org/support/security/CVE-2021-3677/","name":"https://www.postgresql.org/support/security/CVE-2021-3677/","refsource":"MISC","tags":[],"title":"PostgreSQL: CVE-2021-3677: Memory disclosure in certain queries","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://security.gentoo.org/glsa/202211-04","name":"GLSA-202211-04","refsource":"GENTOO","tags":[],"title":"PostgreSQL: Multiple Vulnerabilities (GLSA 202211-04) — Gentoo security","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://security.netapp.com/advisory/ntap-20220407-0008/","name":"https://security.netapp.com/advisory/ntap-20220407-0008/","refsource":"CONFIRM","tags":[],"title":"CVE-2021-3677 Postgresql Vulnerability in NetApp Products | NetApp Product Security","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.cve.org/CVERecord?id=CVE-2021-3677","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3677","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"34","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"postgresql","cpe5":"postgresql","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux_for_ibm_z_systems","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux_for_power_little_endian","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"redhat","cpe5":"software_collections","cpe6":"1.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2021","cve_id":"3677","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"redhat","cpe5":"virtualization","cpe6":"4.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2021-3677","qid":"159576","title":"Oracle Enterprise Linux Security Update for postgresql:12 (ELSA-2021-5235)"},{"cve":"CVE-2021-3677","qid":"159577","title":"Oracle Enterprise Linux Security Update for postgresql:13 (ELSA-2021-5236)"},{"cve":"CVE-2021-3677","qid":"179602","title":"Debian Security Update for postgresql-13postgresql-11 (CVE-2021-3677)"},{"cve":"CVE-2021-3677","qid":"198458","title":"Ubuntu Security Notification for PostgreSQL vulnerabilities (USN-5038-1)"},{"cve":"CVE-2021-3677","qid":"239969","title":"Red Hat Update for rh-postgresql13-postgresql (RHSA-2021:5179)"},{"cve":"CVE-2021-3677","qid":"239972","title":"Red Hat Update for rh-postgresql12-postgresql (RHSA-2021:5197)"},{"cve":"CVE-2021-3677","qid":"239975","title":"Red Hat Update for postgresql:13 (RHSA-2021:5236)"},{"cve":"CVE-2021-3677","qid":"239976","title":"Red Hat Update for postgresql:12 (RHSA-2021:5235)"},{"cve":"CVE-2021-3677","qid":"375772","title":"PostgreSQL Have Multiple Vulnerabilities"},{"cve":"CVE-2021-3677","qid":"500543","title":"Alpine Linux Security Update for postgresql"},{"cve":"CVE-2021-3677","qid":"501471","title":"Alpine Linux Security Update for postgresql"},{"cve":"CVE-2021-3677","qid":"501994","title":"Alpine Linux Security Update for postgresql13"},{"cve":"CVE-2021-3677","qid":"502011","title":"Alpine Linux Security Update for postgresql14"},{"cve":"CVE-2021-3677","qid":"502163","title":"Alpine Linux Security Update for postgresql12"},{"cve":"CVE-2021-3677","qid":"502777","title":"Alpine Linux Security Update for postgresql15"},{"cve":"CVE-2021-3677","qid":"504310","title":"Alpine Linux Security Update for postgresql14"},{"cve":"CVE-2021-3677","qid":"690063","title":"Free Berkeley Software Distribution (FreeBSD) Security Update for postgresql server (b471130b-fb86-11eb-87db-6cc21735f730)"},{"cve":"CVE-2021-3677","qid":"710683","title":"Gentoo Linux PostgreSQL Multiple Vulnerabilities (GLSA 202211-04)"},{"cve":"CVE-2021-3677","qid":"751140","title":"SUSE Enterprise Linux Security Update for postgresql13 (SUSE-SU-2021:3120-1)"},{"cve":"CVE-2021-3677","qid":"751141","title":"SUSE Enterprise Linux Security Update for postgresql12 (SUSE-SU-2021:3119-1)"},{"cve":"CVE-2021-3677","qid":"751184","title":"OpenSUSE Security Update for postgresql13 (openSUSE-SU-2021:3255-1)"},{"cve":"CVE-2021-3677","qid":"751185","title":"OpenSUSE Security Update for postgresql12 (openSUSE-SU-2021:3256-1)"},{"cve":"CVE-2021-3677","qid":"752529","title":"SUSE Enterprise Linux Security Update for postgresql12 (SUSE-SU-2022:2958-1)"},{"cve":"CVE-2021-3677","qid":"900735","title":"Common Base Linux Mariner (CBL-Mariner) Security Update for postgresql (8884)"},{"cve":"CVE-2021-3677","qid":"901185","title":"Common Base Linux Mariner (CBL-Mariner) Security Update for postgresql (8902-1)"},{"cve":"CVE-2021-3677","qid":"902692","title":"Common Base Linux Mariner (CBL-Mariner) Security Update for postgresql (8884-1)"},{"cve":"CVE-2021-3677","qid":"940094","title":"AlmaLinux Security Update for postgresql:12 (ALSA-2021:5235)"},{"cve":"CVE-2021-3677","qid":"940417","title":"AlmaLinux Security Update for postgresql:13 (ALSA-2021:5236)"},{"cve":"CVE-2021-3677","qid":"960321","title":"Rocky Linux Security Update for postgresql:13 (RLSA-2021:5236)"},{"cve":"CVE-2021-3677","qid":"960337","title":"Rocky Linux Security Update for postgresql:12 (RLSA-2021:5235)"}]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","CVE_data_meta":{"ID":"CVE-2021-3677","ASSIGNER":"secalert@redhat.com","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"n/a","product":{"product_data":[{"product_name":"postgresql","version":{"version_data":[{"version_value":"Fixedin v13.4, v12.8, v11.13"}]}}]}}]}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor"}]}]},"references":{"reference_data":[{"refsource":"MISC","name":"https://www.postgresql.org/support/security/CVE-2021-3677/","url":"https://www.postgresql.org/support/security/CVE-2021-3677/"},{"refsource":"MISC","name":"https://bugzilla.redhat.com/show_bug.cgi?id=2001857","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2001857"},{"refsource":"CONFIRM","name":"https://security.netapp.com/advisory/ntap-20220407-0008/","url":"https://security.netapp.com/advisory/ntap-20220407-0008/"},{"refsource":"GENTOO","name":"GLSA-202211-04","url":"https://security.gentoo.org/glsa/202211-04"}]},"description":{"description_data":[{"lang":"eng","value":"A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server settings include max_worker_processes=0, the known versions of this attack are infeasible. However, undiscovered variants of the attack may be independent of that setting."}]}},"nvd":{"publishedDate":"2022-03-02 23:15:00","lastModifiedDate":"2023-01-31 17:29:00","problem_types":["CWE-200"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":6.5,"baseSeverity":"MEDIUM"},"exploitabilityScore":2.8,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE","baseScore":4},"severity":"MEDIUM","exploitabilityScore":8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*","versionStartIncluding":"13.0","versionEndExcluding":"13.4","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*","versionStartIncluding":"12.0","versionEndExcluding":"12.8","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndExcluding":"11.13","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2021","CveId":"3677","Ordinal":"213531","Title":"CVE-2021-3677","CVE":"CVE-2021-3677","Year":"2021"},"notes":[{"CveYear":"2021","CveId":"3677","Ordinal":"1","NoteData":"** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.","Type":"Description","Title":null}]}}}