Lucene search

KLA52239 RCE vulnerability in PostgreSQL

🗓️ 10 Aug 2023 00:00:00Reported by Kaspersky LabType

kaspersky🔗 threats.kaspersky.com👁 26 Views

RCE vulnerability in PostgreSQL 15.x, update to the latest version

Reporter	Title	Published	Views	Family All 72
Cvelist	CVE-2023-39418 Postgresql: merge fails to enforce update or select row security policies	11 Aug 202312:19	–	cvelist
RedhatCVE	CVE-2023-39418	11 Aug 202306:19	–	redhatcve
Tenable Nessus	PostgreSQL 15.x < 15.4 Protection Mechanism Failure	17 Aug 202300:00	–	nessus
Tenable Nessus	FreeBSD : postgresql-server -- MERGE fails to enforce UPDATE or SELECT row security policies (59a43a73-3786-11ee-94b4-6cc21735f730)	15 Aug 202300:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : postgresql15 (SUSE-SU-2023:3342-1)	18 Aug 202300:00	–	nessus
Tenable Nessus	PostgreSQL 11.x < 11.21 / 12.x < 12.16 / 13.x < 13.12 / 14.x < 14.9 / 15.x < 15.4 Multiple Vulnerabilities	17 Aug 202300:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : postgresql15 (SUSE-SU-2023:3347-1)	18 Aug 202300:00	–	nessus
Tenable Nessus	Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : PostgreSQL vulnerabilities (USN-6296-1)	17 Aug 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : postgresql15, postgresql15-contrib, postgresql15-llvmjit (ALAS2023-2023-387)	24 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : postgresql:15 (RHSA-2023:7883)	26 Jan 202400:00	–	nessus

Source	Link
postgresql	www.postgresql.org/support/security/CVE-2023-39418/
threats	www.threats.kaspersky.com/en/product/PostgreSQL/
statistics	www.statistics.securelist.com/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Aug 2023 00:00Current

6.8Medium risk

Vulners AI Score6.8

CVSS33.1 - 4.3

EPSS0.00484

SSVC