Lucene search
+L

50 matches found

nessus
nessus
added 2017/05/19 12:0 a.m.30 views

PostgreSQL 9.2.x < 9.2.21 / 9.3.x < 9.3.17 / 9.4.x < 9.4.12 / 9.5.x < 9.5.7 / 9.6.x < 9.6.3 Multiple Vulnerabilities

Binary data 700120.prm...

7.5CVSS7.1AI score0.06331EPSS
Exploits0References8
nessus
nessus
added 2017/05/15 12:0 a.m.45 views

Debian DSA-3851-1 : postgresql-9.4 - security update

Several vulnerabilities have been found in the PostgreSQL database system : - CVE-2017-7484 Robert Haas discovered that some selectivity estimators did not validate user privileges which could result in information disclosure. - CVE-2017-7485 Daniel Gustafsson discovered that the PGREQUIRESSL...

7.5CVSS6.7AI score0.06331EPSS
Exploits0References8
openvas
openvas
added 2017/05/15 12:0 a.m.25 views

PostgreSQL Multiple Information Disclosure Vulnerabilities (May 2017) - Windows

PostgreSQL is prone to multiple information disclosure vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.8AI score0.06331EPSS
Exploits0References1
debian
debian
added 2017/05/12 9:3 p.m.26 views

[SECURITY] [DSA 3851-1] postgresql-9.4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3851-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 12, 2017 https://www.debian.org/security/faq -...

7.5CVSS7.7AI score0.06331EPSS
Exploits0
cve
cve
added 2017/05/12 7:0 p.m.335 views

CVE-2017-7486

CVE-2017-7486 affects PostgreSQL 8.4–9.6 where the pg_user_mappings view could disclose foreign server credentials to any user with USAGE privilege on the foreign server. Root cause: information leakage via pg_user_mappings. Impact: potential exposure of usernames and passwords used to connect to...

7.5CVSS7.2AI score0.06331EPSS
Exploits0References10Affected Software1
redhatcve
redhatcve
added 2017/05/11 2:51 p.m.47 views

CVE-2017-7486

It was found that the pgusermappings view could disclose information about user mappings to a foreign database to non-administrative database users. A database user with USAGE privilege for this mapping could, when querying the view, obtain user mapping data, such as the username and password use...

7.5CVSS3.2AI score0.06331EPSS
Exploits0References2
cvelist
cvelist
added 2017/05/11 2:1 p.m.12 views

CVE-2016-7486

...

Exploits0
cve
cve
added 2017/05/11 2:1 p.m.25 views

CVE-2016-7486

The CVE-2016-7486 entry is rejected/not used and does not represent an active vulnerability.

6.9AI score
Exploits0
freebsd
freebsd
added 2017/05/11 12:0 a.m.78 views

PostgreSQL vulnerabilities

The PostgreSQL project reports: Security Fixes nested CASE expressions + database and role names with embedded special characters CVE-2017-7484: selectivity estimators bypass SELECT privilege checks. CVE-2017-7485: libpq ignores PGREQUIRESSL environment variable CVE-2017-7486: pgusermappings view...

8.3CVSS4.3AI score0.06331EPSS
Exploits0
cve
cve
added 2014/10/20 10:0 a.m.41 views

CVE-2014-7486

The CVE-2014-7486 entry concerns the Mitsubishi Road Assist (com.agero.mitsubishi) Android app version 1.0. The vulnerability arises because the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and glean sensitive information via a cra...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder