Lucene search

CVE-2020-25695

🗓️ 16 Nov 2020 01:12:15Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 21 Media mentions👁 549 Views

Flaw in PostgreSQL versions before 13.1. Attacker with certain permissions can execute arbitrary SQL functions

Reporter	Title	Published	Views	Family All 192
OSV	CVE-2020-25695	16 Nov 202001:15	–	osv
OSV	BIT-postgresql-2020-25695	6 Mar 202411:06	–	osv
OSV	SQL Injection	15 Feb 202201:57	–	osv
OSV	RHSA-2021:0161 Red Hat Security Advisory: postgresql:10 security update	21 Oct 202422:47	–	osv
OSV	RHSA-2020:5316 Red Hat Security Advisory: rh-postgresql10-postgresql security update	13 Sep 202418:14	–	osv
OSV	RHSA-2020:5317 Red Hat Security Advisory: rh-postgresql12-postgresql security update	13 Sep 202418:14	–	osv
OSV	RHSA-2020:5567 Red Hat Security Advisory: postgresql:10 security update	21 Oct 202422:47	–	osv
OSV	postgresql-9.6 - security update	2 Dec 202000:00	–	osv
OSV	postgresql-10, postgresql-12, postgresql-9.5 vulnerabilities	17 Nov 202013:03	–	osv
OSV	RHSA-2021:1512 Red Hat Security Advisory: postgresql security update	13 Sep 202419:59	–	osv

Nvd

Vulners

Node

postgresql postgresqlRange<9.5.24

postgresql postgresqlRange9.6.0–9.6.20

postgresql postgresqlRange10.0–10.15

postgresql postgresqlRange11.0–11.10

postgresql postgresqlRange12.0–12.5

postgresql postgresqlRange13.0–13.1

Node

debian debian_linuxMatch9.0

[
  {
    "product": "postgresql",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
lists	www.lists.debian.org/debian-lts-announce/2020/12/msg00005.html
postgresql	www.postgresql.org/support/security/
security	www.security.gentoo.org/glsa/202012-07
security	www.security.netapp.com/advisory/ntap-20201202-0003/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Nov 2020 01:15Current

7.2High risk

Vulners AI Score7.2

CVSS26.5

CVSS38.8

EPSS0.00599

CWE-89