Lucene search

K
cvelistRedhatCVELIST:CVE-2014-8161
HistoryJan 27, 2020 - 3:29 p.m.

CVE-2014-8161

2020-01-2715:29:21
redhat
www.cve.org
9

AI Score

6.4

Confidence

Low

EPSS

0.002

Percentile

54.5%

PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.

CNA Affected

[
  {
    "product": "PostgreSQL",
    "vendor": "PostgreSQL Global Development Group",
    "versions": [
      {
        "status": "affected",
        "version": "before 9.0.19"
      },
      {
        "status": "affected",
        "version": "9.1.x before 9.1.15"
      },
      {
        "status": "affected",
        "version": "9.2.x before 9.2.10"
      },
      {
        "status": "affected",
        "version": "9.3.x before 9.3.6"
      },
      {
        "status": "affected",
        "version": "9.4.x before 9.4.1"
      }
    ]
  }
]