8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
80.8%
11/09/2017
High
Multiple serious vulnerabilities have been found in PostgreSQL. Vulnerabilities in core server and contrib module components can be exploit remotely to gain privileges.
PostgreSQL 9.2 earlier than 9.2.24
PostgreSQL 9.3 earlier than 9.3.20
PostgreSQL 9.5 earlier than 9.5.10
PostgreSQL 9.6 earlier than 9.6.6
PostgreSQL 10 earlier than 10.1
Update to the latest version
Download PostgreSQL
PE
CVE-2017-121727.2High
CVE-2017-150985.5High
CVE-2017-150994.0Warning
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12172
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/PostgreSQL/
www.postgresql.org/download/
www.postgresql.org/support/security/
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
80.8%