It was discovered that PostgreSQL JDBC Driver incorrectly handled certain
requests from external entities. A remote attacker could use this vulnerability
to cause a denial of service or possibly execute arbitrary code.

References

ubuntu.com/security/CVE-2020-13692

ubuntu.com/security/notices/USN-5238-1

veracode 1

fedora 1

f5 1

nessus 27

openvas 10

cvelist 1

redhat 12

mageia 1

cve 1

debiancve 1

amazon 2

osv 5

ibm 6

cgr 1

rocky 1

alpinelinux 1

wolfi 1

oraclelinux 3

prion 1

almalinux 1

redhatcve 1

centos 2

github 1

ubuntucve 1

ubuntu 1

debian 1

rosalinux 1

veracode

XML External Entity (XXE)

2020-06-05 05:45:33

fedora

[SECURITY] Fedora 32 Update: postgresql-jdbc-42.2.12-2.fc32

2020-08-07 01:19:39

K23157312 : PostgreSQL vulnerability CVE-2020-13692

2020-09-18 00:00:00

nessus

RHEL 6 : postgresql-jdbc (RHSA-2020:3284)

2020-08-03 00:00:00

Oracle Linux 6 : postgresql-jdbc (ELSA-2020-3284)

2020-08-12 00:00:00

EulerOS 2.0 SP8 : postgresql-jdbc (EulerOS-SA-2021-1165)

2021-02-01 00:00:00

openvas

Mageia: Security Advisory (MGASA-2020-0319)

2022-01-28 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:0599-1)

2021-04-19 00:00:00

Huawei EulerOS: Security Advisory for postgresql-jdbc (EulerOS-SA-2021-1113)

2021-01-19 00:00:00

cvelist

CVE-2020-13692

2020-06-04 15:07:37

redhat

(RHSA-2020:3286) Important: postgresql-jdbc security update

2020-08-03 16:37:37

(RHSA-2020:3284) Important: postgresql-jdbc security update

2020-08-03 16:33:30

(RHSA-2020:3005) Important: Red Hat Integration Debezium 1.1.3 security update

2020-07-20 20:44:11

mageia

Updated postgresql-jdbc packages fix security vulnerability

2020-08-18 20:41:27

cve

CVE-2020-13692

2020-06-04 16:15:00

debiancve

CVE-2020-13692

2020-06-04 16:15:00

amazon

Important: postgresql-jdbc

2021-09-02 22:54:00

Important: postgresql-jdbc

2020-09-01 00:40:00

osv

Improper Restriction of XML External Entity Reference

2022-02-10 00:30:07

CVE-2020-13692

2020-06-04 16:15:12

Important: postgresql-jdbc security update

2020-07-28 12:19:54

ibm

Security Bulletin: PostgresSQL JDBC Driver as used in IBM QRadar SIEM is vulnerable to information disclosure (CVE-2020-13692)

2020-12-15 17:05:50

Security Bulletin: IBM Security Guardium is affected by a postgresql-42.0.0.jar vulnerability

2022-11-08 20:13:29

Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities (CVE-2016-3506, CVE-2020-13692)

2021-09-30 17:52:51

cgr

CVE-2020-13692 vulnerabilities

2024-05-19 03:07:16

rocky

postgresql-jdbc security update

2020-07-28 12:19:54

alpinelinux

CVE-2020-13692

2020-06-04 16:15:00

wolfi

CVE-2020-13692 vulnerabilities

2024-05-25 09:24:45

oraclelinux

postgresql-jdbc security update

2020-08-04 00:00:00

postgresql-jdbc security update

2020-08-04 00:00:00

postgresql-jdbc security update

2020-07-29 00:00:00

prion

Design/Logic Flaw

2020-06-04 16:15:00

almalinux

Important: postgresql-jdbc security update

2020-07-28 12:19:54

redhatcve

CVE-2020-13692

2020-07-01 17:20:39

centos

postgresql security update

2020-08-07 13:00:18

postgresql security update

2020-08-07 12:28:04

github

Improper Restriction of XML External Entity Reference

2022-02-10 00:30:07

ubuntucve

CVE-2020-13692

2020-06-04 00:00:00

ubuntu

PostgreSQL JDBC Driver vulnerability

2022-09-06 00:00:00

debian

[SECURITY] [DSA 5196-1] libpgjava security update

2022-07-31 11:39:10

rosalinux

Advisory ROSA-SA-2021-1955

2021-07-02 17:59:52

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8.2 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.6%

JSON

Related for OSV:USN-5238-1