Lucene search
PostgreSQL Global Development GroupPOSTGRESQL:CVE-2014-0060HistoryMar 31, 2014 - 2:58 p.m.
Vulnerability in core server (CVE-2014-0060)
2014-03-3114:58:00
PostgreSQL Global Development Group
www.postgresql.org
573
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
SET ROLE bypasses lack of ADMIN OPTION.
| CPE | Name | Operator | Version |
|---|---|---|---|
| postgresql | lt | 9.2.7 | |
| postgresql | lt | 8.4.20 | |
| postgresql | lt | 9.1.12 | |
| postgresql | lt | 9.0.16 | |
| postgresql | lt | 9.3.3 |
References
Related
prion
prion
Command injection
2014-03-31 14:58:00
seebug
seebug
PostgreSQL安全限制绕过漏洞
2014-02-25 00:00:00
Nixu NameSurfer多个安全漏洞
2014-04-08 00:00:00
ubuntucve
ubuntucve
CVE-2014-0060
2014-02-21 00:00:00
cve
cve
CVE-2014-0060
2014-03-31 14:58:00
veracode
veracode
Unauthorised User Addition And Removal
2019-01-15 08:57:29
Privilege Escalation
2019-05-02 05:01:19
Code Execution Using A Race Condition
2019-05-02 05:01:19
checkpoint_advisories
checkpoint_advisories
PostgreSQL Database SET ROLE Security Bypass (CVE-2014-0060)
2014-03-17 00:00:00
nessus
nessus
Puppet Enterprise 3.x < 3.2.0 Multiple Vulnerabilities
2014-03-21 00:00:00
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : postgresql-8.4, postgresql-9.1 vulnerabilities (USN-2120-1)
2014-02-25 00:00:00
Oracle Linux 5 : postgresql (ELSA-2014-0249)
2014-03-05 00:00:00
oraclelinux
oraclelinux
postgresql84 and postgresql security update
2014-02-25 00:00:00
postgresql security update
2014-03-04 00:00:00
kaspersky
kaspersky
KLA10297 Multiple vulnerabilities in PostgreSQL
2014-03-31 00:00:00
centos
centos
postgresql security update
2014-03-04 20:53:33
postgresql, postgresql84 security update
2014-02-25 18:39:58
postgresql92 security update
2014-02-28 01:35:22
openvas
openvas
CentOS Update for postgresql84 CESA-2014:0211 centos5
2014-03-04 00:00:00
Ubuntu Update for postgresql-9.1 USN-2120-1
2014-02-25 00:00:00
CentOS Update for postgresql CESA-2014:0211 centos6
2014-03-04 00:00:00
redhat
redhat
(RHSA-2014:0211) Important: postgresql84 and postgresql security update
2014-02-25 00:00:00
(RHSA-2014:0249) Important: postgresql security update
2014-03-04 00:00:00
(RHSA-2014:0221) Important: postgresql92-postgresql security update
2014-02-27 00:00:00
amazon
amazon
Important: postgresql9
2014-03-13 18:12:00
Important: postgresql8
2014-03-13 18:12:00
securityvulns
securityvulns
[USN-2120-1] PostgreSQL vulnerabilities
2014-02-28 00:00:00
PostgreSQL multiple security vulnerabilities
2014-02-28 00:00:00
APPLE-SA-2014-09-17-5 OS X Server 3.2.1
2014-09-21 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2014-02-24 00:00:00
debian
debian
[SECURITY] [DSA 2864-1] postgresql-8.4 security update
2014-02-20 17:05:33
[SECURITY] [DSA 2865-1] postgresql-9.1 security update
2014-02-20 21:25:41
osv
osv
postgresql-8.4 - several
2014-02-20 00:00:00
postgresql-9.1 - several
2014-02-20 00:00:00
mageia
mageia
Updated postgresql packages fix multiple security vulnerabilities
2014-05-09 01:29:25
Updated postgresql packages fix multiple vulnerabilities
2014-05-17 04:20:42
freebsd
freebsd
PostgreSQL -- multiple privilege issues
2014-02-20 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2014-08-29 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
65.2%
Related for POSTGRESQL:CVE-2014-0060