Aiven aiven-db-migrate Privilege Escalation Vulnerability in PostgreSQL Databases

A privilege escalation vulnerability has been identified in the Aiven database migration tool, aiven-db-migrate, prior to version 1.0.7. This vulnerability allows unauthorized elevation to superuser status within PostgreSQL databases during migrations from untrusted source servers. The issue arises because psql executes commands embedded in the database dump from the source server, potentially leading to unauthorized access or modifications.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation to superuser level in PostgreSQL databases, which could lead to unrestricted access and control over the database, including the ability to execute arbitrary commands or modify critical data.

Reproduction

To reproduce this vulnerability, use aiven-db-migrate version prior to 1.0.7 to migrate a PostgreSQL database from an untrusted source server. During the migration process, the psql tool will execute commands embedded in the database dump from the source server, leading to unauthorized privilege escalation.

Remediation

Users are advised to upgrade to aiven-db-migrate version 1.0.7 or later. If migrating from untrusted sources, ensure to use the latest version of the tool.