8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:N/A:C
0.011 Low
EPSS
Percentile
82.6%
A vulnerability allows suppressing the normal checks that a SQL function returns the data type it’s declared to do. These errors can easily be exploited to cause a backend crash, and in principle might be used to read database content that the user should not be able to access.
CPE | Name | Operator | Version |
---|---|---|---|
postgresql | lt | 8.2.2 | |
postgresql | lt | 7.3.13 | |
postgresql | lt | 7.4.16 | |
postgresql | lt | 8.0.11 | |
postgresql | lt | 8.1.7 |