CVE-2023-5868

🗓️ 10 Dec 2023 17:56:57Reported by redhatType

PostgreSQL memory disclosure vulnerability allows remote access to sensitive information via certain aggregate function calls with 'unknown'-type arguments

Reporter	Title	Published	Views	Family All 300
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is vulnerable to sensitive information disclosure (CVE-2023-5868)	15 May 202417:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities	26 Mar 202504:11	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Node.js, AngularJS, Golang Go, libcURL, PostgreSQL, Linux kernel might affect IBM Spectrum Protect Plus	24 Sep 202405:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for January 2024.	2 Feb 202408:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Connect:Direct Web Service is vulnerable to sensitive information exposure due to PostgreSQL (CVE-2023-5868)	24 Apr 202404:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple PostgreSQL Vulnerabilities Affect IBM Storage Scale System	21 Jun 202415:45	–	ibm
IBM Security Bulletins	Security Bulletin: The Network Threat Analytics App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	24 Mar 202618:22	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to various issues in postgresql	31 Oct 202518:37	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in PostgreSQL, Golang might affect IBM Spectrum Copy Data Management	12 Jan 202416:31	–	ibm
FreeBSD	postgresql-server -- Memory disclosure in aggregate function calls	9 Nov 202300:00	–	freebsd

NVD

Node

postgresql postgresqlRange11.0–11.22

postgresql postgresqlRange12.0–12.17

postgresql postgresqlRange13.0–13.13

postgresql postgresqlRange14.0–14.10

postgresql postgresqlRange15.0–15.5

postgresql postgresqlMatch16.0

Node

redhat codeready_linux_builder_eusMatch9.2

redhat codeready_linux_builder_eus_for_power_little_endian_eusMatch9.0_ppc64le

redhat codeready_linux_builder_eus_for_power_little_endian_eusMatch9.2_ppc64le

redhat codeready_linux_builder_for_arm64_eusMatch8.6_aarch64

redhat codeready_linux_builder_for_arm64_eusMatch9.0_aarch64

redhat codeready_linux_builder_for_arm64_eusMatch9.2_aarch64

redhat codeready_linux_builder_for_ibm_z_systems_eusMatch9.0_s390x

redhat codeready_linux_builder_for_ibm_z_systems_eusMatch9.2_s390x

redhat codeready_linux_builder_for_power_little_endian_eusMatch9.0_ppc64le

redhat codeready_linux_builder_for_power_little_endian_eusMatch9.2_ppc64le

redhat software_collectionsMatch1.0

redhat enterprise_linuxMatch8.0

redhat enterprise_linuxMatch9.0

redhat enterprise_linux_eusMatch8.6

redhat enterprise_linux_eusMatch8.8

redhat enterprise_linux_eusMatch9.0

redhat enterprise_linux_eusMatch9.2

redhat enterprise_linux_for_arm_64Match8.0

redhat enterprise_linux_for_arm_64Match8.8_aarch64

redhat enterprise_linux_for_ibm_z_systemsMatch8.0_s390x

redhat enterprise_linux_for_ibm_z_systems_eusMatch8.6_s390x

redhat enterprise_linux_for_ibm_z_systems_eusMatch8.8_s390x

redhat enterprise_linux_for_ibm_z_systems_eusMatch9.0_s390x

redhat enterprise_linux_for_ibm_z_systems_eusMatch9.2_s390x

redhat enterprise_linux_for_power_little_endianMatch8.0_ppc64le

redhat enterprise_linux_for_power_little_endian_eusMatch8.6_ppc64le

redhat enterprise_linux_for_power_little_endian_eusMatch8.8_ppc64le

redhat enterprise_linux_for_power_little_endian_eusMatch9.0_ppc64le

redhat enterprise_linux_for_power_little_endian_eusMatch9.2_ppc64le

redhat enterprise_linux_server_ausMatch8.2

redhat enterprise_linux_server_ausMatch8.4

redhat enterprise_linux_server_ausMatch8.6

redhat enterprise_linux_server_ausMatch9.2

redhat enterprise_linux_server_tusMatch8.2

redhat enterprise_linux_server_tusMatch8.4

redhat enterprise_linux_server_tusMatch8.6

[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Advanced Cluster Security 4.2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.2.4-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.2::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Advanced Cluster Security 4.2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-main-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.2.4-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.2::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Advanced Cluster Security 4.2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.2.4-7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.2::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Advanced Cluster Security 4.2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.2.4-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.2::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Advanced Cluster Security 4.2",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.2.4-7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.2::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8090020231114113712.a75119d5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8090020231128173330.a75119d5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:15",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8090020231114113548.a75119d5",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.2 Advanced Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8020020231128165246.4cda2c84",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_tus:8.2::appstream",
      "cpe:/a:redhat:rhel_aus:8.2::appstream",
      "cpe:/a:redhat:rhel_e4s:8.2::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8020020231128165246.4cda2c84",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_tus:8.2::appstream",
      "cpe:/a:redhat:rhel_aus:8.2::appstream",
      "cpe:/a:redhat:rhel_e4s:8.2::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8020020231128165246.4cda2c84",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_tus:8.2::appstream",
      "cpe:/a:redhat:rhel_aus:8.2::appstream",
      "cpe:/a:redhat:rhel_e4s:8.2::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127153301.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127154806.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127153301.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127154806.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127153301.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8040020231127154806.522a0ee4",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_aus:8.4::appstream",
      "cpe:/a:redhat:rhel_e4s:8.4::appstream",
      "cpe:/a:redhat:rhel_tus:8.4::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8060020231114115246.ad008a3a",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:8.6::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8060020231128165328.ad008a3a",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:8.6::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:13",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8080020231114105206.63b34585",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:8.8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:12",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8080020231128165335.63b34585",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:8.8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:15",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "8080020231113134015.63b34585",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:8.8::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:13.13-1.el9_3",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream",
      "cpe:/a:redhat:enterprise_linux:9::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:15",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "9030020231120082734.rhel9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:enterprise_linux:9::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.0 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:13.13-1.el9_0",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.0::appstream",
      "cpe:/a:redhat:rhel_eus:9.0::crb"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:13.13-1.el9_2",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.2::crb",
      "cpe:/a:redhat:rhel_eus:9.2::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:15",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "9020020231115020618.rhel9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_eus:9.2::appstream"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Software Collections for Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rh-postgresql12-postgresql",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:12.17-1.el7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_software_collections:3::el7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Software Collections for Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rh-postgresql13-postgresql",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "0:13.13-1.el7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:rhel_software_collections:3::el7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-3.74-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "3.74.8-9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:3.74::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-3.74-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-main-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "3.74.8-9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:3.74::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-3.74-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "3.74.8-7",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:3.74::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-3.74-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "3.74.8-9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:3.74::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-3.74-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "3.74.8-9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:3.74::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-4.1-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.1.6-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.1::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-4.1-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-main-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.1.6-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.1::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-4.1-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-operator-bundle",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.1.6-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.1::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-4.1-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.1.6-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.1::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHACS-4.1-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "4.1.6-6",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:advanced_cluster_security:4.1::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql",
    "defaultStatus": "unknown",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:10/postgresql",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:16/postgresql",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "postgresql:16/postgresql",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Software Collections",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rh-postgresql10-postgresql",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:rhel_software_collections:3"
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2023:7784
access	www.access.redhat.com/errata/RHSA-2024:0332
access	www.access.redhat.com/errata/RHSA-2023:7785
access	www.access.redhat.com/errata/RHSA-2023:7884
access	www.access.redhat.com/security/cve/CVE-2023-5868
access	www.access.redhat.com/errata/RHSA-2023:7616
access	www.access.redhat.com/errata/RHSA-2024:0304
access	www.access.redhat.com/errata/RHSA-2023:7770
access	www.access.redhat.com/errata/RHSA-2023:7772
access	www.access.redhat.com/errata/RHSA-2023:7694

12 Mar 2026 05:21Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.14.3

EPSS0.02718

CWE-686