Lucene search
HistoryAug 11, 2023 - 1:15 p.m.
CVE-2023-39417
sql injection
postgresql
cve-2023-39417
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.6%
IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:…@ inside a quoting construct (dollar quoting, ‘’, or “”). If an administrator has installed files of a vulnerable, trusted, non-bundled extension, an attacker with database-level CREATE privilege can execute arbitrary code as the bootstrap superuser.
Affected configurations
Node
postgresqlpostgresqlRange11.0–11.21
ORpostgresqlpostgresqlRange12.0–12.16
ORpostgresqlpostgresqlRange13.0–13.12
ORpostgresqlpostgresqlRange14.0–14.9
ORpostgresqlpostgresqlRange15.0–15.4
Node
redhatsoftware_collectionsMatch-
ORredhatenterprise_linuxMatch8.0
ORredhatenterprise_linuxMatch9.0
Node
debiandebian_linuxMatch8.0
ORdebiandebian_linuxMatch11.0
ORdebiandebian_linuxMatch12.0
CNA Affected
[
{
"vendor": "Red Hat",
"product": "Red Hat Advanced Cluster Security 4.2",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.2.4-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.2::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Advanced Cluster Security 4.2",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.2.4-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.2::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Advanced Cluster Security 4.2",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-operator-bundle",
"defaultStatus": "affected",
"versions": [
{
"version": "4.2.4-7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.2::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Advanced Cluster Security 4.2",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.2.4-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.2::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Advanced Cluster Security 4.2",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.2.4-7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.2::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8090020231114113712.a75119d5",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8090020231128173330.a75119d5",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:15",
"defaultStatus": "affected",
"versions": [
{
"version": "8090020231114113548.a75119d5",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8020020231128165246.4cda2c84",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_tus:8.2::appstream",
"cpe:/a:redhat:rhel_aus:8.2::appstream",
"cpe:/a:redhat:rhel_e4s:8.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8020020231128165246.4cda2c84",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_tus:8.2::appstream",
"cpe:/a:redhat:rhel_aus:8.2::appstream",
"cpe:/a:redhat:rhel_e4s:8.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8020020231128165246.4cda2c84",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_tus:8.2::appstream",
"cpe:/a:redhat:rhel_aus:8.2::appstream",
"cpe:/a:redhat:rhel_e4s:8.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127153301.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127154806.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127153301.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127154806.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127153301.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8040020231127154806.522a0ee4",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_aus:8.4::appstream",
"cpe:/a:redhat:rhel_e4s:8.4::appstream",
"cpe:/a:redhat:rhel_tus:8.4::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020231114115246.ad008a3a",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.6::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8060020231128165328.ad008a3a",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.6::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:13",
"defaultStatus": "affected",
"versions": [
{
"version": "8080020231114105206.63b34585",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:12",
"defaultStatus": "affected",
"versions": [
{
"version": "8080020231128165335.63b34585",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:15",
"defaultStatus": "affected",
"versions": [
{
"version": "8080020231113134015.63b34585",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:8.8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql",
"defaultStatus": "affected",
"versions": [
{
"version": "0:13.13-1.el9_3",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:15",
"defaultStatus": "affected",
"versions": [
{
"version": "9030020231120082734.rhel9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9.0 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql",
"defaultStatus": "affected",
"versions": [
{
"version": "0:13.13-1.el9_0",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:9.0::appstream",
"cpe:/a:redhat:rhel_eus:9.0::crb"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql",
"defaultStatus": "affected",
"versions": [
{
"version": "0:13.13-1.el9_2",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::crb",
"cpe:/a:redhat:rhel_eus:9.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:15",
"defaultStatus": "affected",
"versions": [
{
"version": "9020020231115020618.rhel9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Software Collections for Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "rh-postgresql12-postgresql",
"defaultStatus": "affected",
"versions": [
{
"version": "0:12.17-1.el7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_software_collections:3::el7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Software Collections for Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "rh-postgresql13-postgresql",
"defaultStatus": "affected",
"versions": [
{
"version": "0:13.13-1.el7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:rhel_software_collections:3::el7"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-3.74-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "3.74.8-9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3.74::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-3.74-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "3.74.8-9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3.74::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-3.74-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-operator-bundle",
"defaultStatus": "affected",
"versions": [
{
"version": "3.74.8-7",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3.74::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-3.74-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "3.74.8-9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3.74::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-3.74-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "3.74.8-9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3.74::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-4.1-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.1.6-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.1::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-4.1-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.1.6-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.1::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-4.1-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-operator-bundle",
"defaultStatus": "affected",
"versions": [
{
"version": "4.1.6-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.1::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-4.1-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.1.6-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.1::el8"
]
},
{
"vendor": "Red Hat",
"product": "RHACS-4.1-RHEL-8",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"defaultStatus": "affected",
"versions": [
{
"version": "4.1.6-6",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.1::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "postgresql:10/postgresql",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Software Collections",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "rh-postgresql10-postgresql",
"defaultStatus": "affected",
"cpes": [
"cpe:/a:redhat:rhel_software_collections:3"
]
}
]References
access.redhat.com/errata/RHSA-2023:7545
access.redhat.com/errata/RHSA-2023:7579
access.redhat.com/errata/RHSA-2023:7580
access.redhat.com/errata/RHSA-2023:7581
access.redhat.com/errata/RHSA-2023:7616
access.redhat.com/errata/RHSA-2023:7656
access.redhat.com/errata/RHSA-2023:7666
access.redhat.com/errata/RHSA-2023:7667
access.redhat.com/errata/RHSA-2023:7694
access.redhat.com/errata/RHSA-2023:7695
access.redhat.com/errata/RHSA-2023:7714
access.redhat.com/errata/RHSA-2023:7770
access.redhat.com/errata/RHSA-2023:7772
access.redhat.com/errata/RHSA-2023:7784
access.redhat.com/errata/RHSA-2023:7785
access.redhat.com/errata/RHSA-2023:7883
access.redhat.com/errata/RHSA-2023:7884
access.redhat.com/errata/RHSA-2023:7885
access.redhat.com/errata/RHSA-2024:0304
access.redhat.com/errata/RHSA-2024:0332
access.redhat.com/errata/RHSA-2024:0337
access.redhat.com/security/cve/CVE-2023-39417
bugzilla.redhat.com/show_bug.cgi?id=2228111
lists.debian.org/debian-lts-announce/2023/10/msg00003.html
security.netapp.com/advisory/ntap-20230915-0002/
www.debian.org/security/2023/dsa-5553
www.debian.org/security/2023/dsa-5554
www.postgresql.org/support/security/CVE-2023-39417
Related
debiancve
debiancve
CVE-2023-39417
2023-08-11 13:15:09
nessus
nessus
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:3345-1)
2023-08-18 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3341-1)
2023-08-18 00:00:00
Ubuntu: Security Advisory (USN-6366-1)
2023-09-14 00:00:00
veracode
veracode
SQL Injection
2023-08-16 00:26:16
redhatcve
redhatcve
CVE-2023-39417
2023-08-11 06:19:18
alpinelinux
alpinelinux
CVE-2023-39417
2023-08-11 13:15:09
ubuntu
ubuntu
PostgreSQL vulnerability
2023-09-13 00:00:00
PostgreSQL vulnerabilities
2023-08-17 00:00:00
osv
osv
postgresql-11 - security update
2023-10-04 00:00:00
BIT-postgresql-2023-39417
2024-03-06 11:03:15
CVE-2023-39417
2023-08-11 13:15:09
ibm
ibm
redos
redos
ROS-20231009-01
2023-10-09 00:00:00
ROS-20240329-12
2024-03-29 00:00:00
ROS-20240329-11
2024-03-29 00:00:00
kaspersky
kaspersky
KLA52240 RCE vulnerability in PostgreSQL
2023-08-10 00:00:00
broadcom
broadcom
nvd
nvd
CVE-2023-39417
2023-08-11 13:15:09
prion
prion
Sql injection
2023-08-11 13:15:00
cbl_mariner
cbl_mariner
CVE-2023-39417 affecting package postgresql for versions less than 14.10-1
2024-01-14 22:46:30
debian
debian
[SECURITY] [DLA 3600-1] postgresql-11 security update
2023-10-03 21:57:11
[SECURITY] [DSA 5554-1] postgresql-13 security update
2023-11-13 21:27:39
[SECURITY] [DSA 5553-1] postgresql-15 security update
2023-11-13 21:15:25
cvelist
cvelist
freebsd
freebsd
ubuntucve
ubuntucve
CVE-2023-39417
2023-08-11 00:00:00
mageia
mageia
Updated postgresql packages fix security vulnerability
2023-09-11 16:07:54
cloudfoundry
cloudfoundry
USN-6296-1: PostgreSQL vulnerabilities | Cloud Foundry
2024-03-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2359
2024-02-27 09:01:10
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0632
2023-08-14 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0450
2023-08-14 00:00:00
redhat
redhat
(RHSA-2023:7714) Important: postgresql:12 security update
2023-12-11 09:25:48
(RHSA-2023:7784) Important: postgresql security update
2023-12-13 14:48:22
(RHSA-2023:7581) Important: postgresql:13 security update
2023-11-29 13:53:50
oraclelinux
oraclelinux
postgresql:13 security update
2023-11-30 00:00:00
postgresql:12 security update
2023-12-18 00:00:00
postgresql security update
2023-12-15 00:00:00
rocky
rocky
postgresql:12 security update
2024-01-09 04:07:10
postgresql:13 security update
2023-12-06 23:16:33
postgresql:15 security update
2024-01-09 04:08:12
almalinux
almalinux
Important: postgresql:12 security update
2023-12-11 00:00:00
Important: postgresql:13 security update
2023-11-29 00:00:00
Important: postgresql security update
2023-12-13 00:00:00
hp
hp
HP Device Manager Vulnerability Update (5.0.12)
2024-01-26 00:00:00
ics
ics
Siemens SINEC NMS
2024-02-15 12:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.6%
Related for CVE-2023-39417