Lucene search

CVE-2024-1597

🗓️ 19 Feb 2024 13:07:15Reported by f86ef6dc-4d3a-42ad-8f28-e6d5547a5007Type

pgjdbc PostgreSQL JDBC Driver SQL Injection Vulnerabilit

Reporter	Title	Published	Views	Family All 123
AlmaLinux	Important: postgresql-jdbc security update	20 Mar 202400:00	–	almalinux
AlmaLinux	Important: postgresql-jdbc security update	20 Mar 202400:00	–	almalinux
Atlassian	SQLi (SQL Injection) org.postgresql:postgresql Dependency in Confluence Data Center and Server	16 May 202404:11	–	atlassian
Atlassian	SQLi (SQL Injection) org.postgresql:postgresql Dependency in Jira Software Data Center and Server	10 Apr 202407:45	–	atlassian
Atlassian	SQLi (SQL Injection) org.postgresql:postgresql Dependency in Bamboo Data Center and Server	14 Mar 202405:46	–	atlassian
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in postgresql-42.3.2.jar	30 Apr 202417:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite uses postgresql-42.3.8.jar which is vulnerable to CVE-2024-1597	1 Apr 202407:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to SQL injection in PostgreSQL JDBC Driver [CVE-2024-1597]	25 Apr 202417:46	–	ibm
IBM Security Bulletins	Security Bulletin: An IBM QRadar SIEM JDBC protocol is vulnerable to SQL injection (CVE-2024-1597)	15 May 202408:37	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in PostgreSQL affects IBM Storage Scale (CVE-2024-1597)	9 Jul 202415:37	–	ibm

Nvd

Node

postgresql postgresql_jdbc_driverRange<42.2.28

postgresql postgresql_jdbc_driverRange42.3.0–42.3.9

postgresql postgresql_jdbc_driverRange42.4.0–42.4.4

postgresql postgresql_jdbc_driverRange42.5.0–42.5.5

postgresql postgresql_jdbc_driverRange42.6.0–42.6.1

postgresql postgresql_jdbc_driverRange42.7.0–42.7.2

Node

fedoraproject fedoraMatch40

Source	Link
github	www.github.com/pgjdbc/pgjdbc/security/advisories/GHSA-24rp-q3w6-vc56
lists	www.lists.debian.org/debian-lts-announce/2024/05/msg00007.html
enterprisedb	www.enterprisedb.com/docs/security/assessments/cve-2024-1597/
openwall	www.openwall.com/lists/oss-security/2024/04/02/6
enterprisedb	www.enterprisedb.com/docs/jdbc_connector/latest/01_jdbc_rel_notes/
security	www.security.netapp.com/advisory/ntap-20240419-0008/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/TZQTSMESZD2RJ5XBPSXH3TIQVUW5DIUU/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Feb 2024 13:15Current

9.7High risk

Vulners AI Score9.7

CVSS39.8

EPSS0.001

CWE-89