5.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:P/A:N
0.003 Low
EPSS
Percentile
68.3%
An unprivileged database user can remove superuser-only
settings that were applied to his account with ALTER USER by a superuser, thus
bypassing settings that should be enforced.
CPE | Name | Operator | Version |
---|---|---|---|
postgresql | lt | 8.0.25 | |
postgresql | lt | 7.4.29 | |
postgresql | lt | 8.1.21 | |
postgresql | lt | 8.2.17 | |
postgresql | lt | 8.3.11 | |
postgresql | lt | 8.4.4 |