8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.5%
Vulnerability of PostgreSQL database management system is related to the possibility of sending signals to superuser processes using the pg_signal_backend role.
to superuser processes using the pg_signal_backend role. Exploitation of the vulnerability could allow
a remote attacker to cause a denial of service to a specific background process
A vulnerability in the PostgreSQL database management system is related to the lack of service data protection in function calls with aggregation.
aggregation function calls. Exploitation of the vulnerability could allow an attacker acting remotely,
disclose protected information when the unknown type is passed as an argument
Vulnerability in PostgreSQL database management system is related to access delimitation flaws.
Exploitation of the vulnerability could allow an attacker to read and update protected data
Vulnerability of database management system functions array_append, array_prepend, array_subscript_handler
PostgreSQL is related to integer overflow on array modification. Exploitation of the vulnerability could
Allow a remote attacker to execute arbitrary code
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
redos | 7.3 | x86_64 | postgresql15 | <= 15.5-1 | UNKNOWN |
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.5%