Lucene search
K

97 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-33374

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00786EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: postgresql:10 (TSSA-2023:0199)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0199 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.2CVSS6.7AI score0.0119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.7 views

Alibaba Cloud Linux 3 : 0109: postgresql:13 (ALINUX3-SA-2023:0109)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2023:0109 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-2454: schemaelement defeats...

7.2CVSS6.7AI score0.0119EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2025/03/01 9:32 p.m.19 views

Advisory ROSA-SA-2025-2743

Software: postgresql14 14.13 OS: ROSA Virtualization 3.0 packageevrstring: postgresql14-14.13-2PGDG.0.1.rv30 CVE-ID: CVE-2023-2454 BDU-ID: 2023-03247 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Schema Handler component of the PostgreSQL database management system is related to access...

8.8CVSS7.9AI score0.04322EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/06 12:0 a.m.12 views

Oracle Linux 8 : postgresql:16 (ELSA-2024-10831)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10831 advisory. - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979 - Fix CVE-2024-7348 - Fixes: CVE-2023-2454 CVE-2023-2455 Tenable has extracted the preceding...

8.8CVSS7.1AI score0.04422EPSS
Exploits1References4
OSV
OSV
added 2024/11/16 7:16 a.m.40 views

BIT-POSTGRESQL-2024-10976 PostgreSQL row security below e.g. subqueries disregards user ID changes

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

5.4CVSS6.8AI score0.00786EPSS
Exploits0References4
OSV
OSV
added 2024/11/14 1:15 p.m.23 views

CVE-2024-10976

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

5.4CVSS6.8AI score0.00786EPSS
Exploits0References3
Circl
Circl
added 2024/11/14 1:5 p.m.3 views

CVE-2023-2455

creationtimestamp| type| source ---|---|--- 2024-11-14 13:05:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113481449755283145 2024-11-14 14:59:09+00:00| seen| https://t.me/cvedetector/10948 2025-02-14 10:03:10+00:00| seen| Telegram/T7bmhZyyY3q44NdwHtBlh0uklY8nk4hbekeMxCZgwv81B...

5.4CVSS6.1AI score0.00694EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2024/11/14 12:0 a.m.19 views

PostgreSQL -- PostgreSQL row security below e.g. subqueries disregards user ID changes

PostgreSQL project reports: Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery...

5.4CVSS7.1AI score0.00786EPSS
Exploits0References1
Rosalinux
Rosalinux
added 2024/10/03 8:57 p.m.35 views

Advisory ROSA-SA-2024-2486

Software: postgresql15 15.7 OS: rosa-server79 packageevrstring: postgresql15-15.7-1PGDG.res7 CVE-ID: CVE-2023-39418 BDU-ID: 2023-04768 CVE-Crit: LOW CVE-DESC.: A vulnerability in the PostgreSQL database management system is related to access delimitation flaws. Exploitation of the vulnerability...

8.8CVSS8.3AI score0.04322EPSS
Exploits0
Rosalinux
Rosalinux
added 2024/10/03 8:55 p.m.40 views

Advisory ROSA-SA-2024-2485

Software: postgresql14 14.12 OS: rosa-server79 packageevrstring: postgresql14-14.12-1PGDG.res7 CVE-ID: CVE-2022-41862 BDU-ID: 2023-02003 CVE-Crit: LOW CVE-DESC.: A vulnerability in the PostgreSQL database management system is related to information disclosure. Exploitation of the vulnerability...

8.8CVSS7.8AI score0.04322EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/30 12:0 a.m.22 views

Oracle Linux 9 : postgresql:15 (ELSA-2024-6020)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6020 advisory. - Fix CVE-2024-0985 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418 - Fixes CVE-2023-2454 and CVE-2023-2455...

8.8CVSS6.6AI score0.04322EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/07/13 12:0 a.m.22 views

CBL Mariner 2.0 Security Update: postgresql (CVE-2023-2455)

The version of postgresql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2455 advisory. - Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policie...

5.4CVSS6.5AI score0.00694EPSS
Exploits0References2
Amazon
Amazon
added 2024/02/19 12:0 a.m.6 views

Important: postgresql

Issue Overview: This enabled an attacker having database-level CREATE privilege to execute arbitrary code as the bootstrap superuser. Database owners have that right by default, and explicit grants may extend it to other users. CVE-2023-2454 While CVE-2016-2193 fixed most interaction between row...

7.5CVSS7.9AI score0.01807EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/12/13 8:6 a.m.32 views

Important: Red Hat Security Advisory: rh-postgresql13-postgresql security update

An update for rh-postgresql13-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.28 views

Important: Red Hat Security Advisory: postgresql:13 security update

An update for the postgresql:13 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.26 views

Important: Red Hat Security Advisory: postgresql:12 security update

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/12/07 12:0 a.m.31 views

RHEL 8 : postgresql:13 (RHSA-2023:7695)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7695 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: schemaelement defeats protective...

8.8CVSS7AI score0.04322EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2023/12/06 9:55 a.m.40 views

Important: Red Hat Security Advisory: postgresql:12 security update

An update for the postgresql:12 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/11/29 2:18 p.m.40 views

Important: Red Hat Security Advisory: postgresql:13 security update

An update for the postgresql:13 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References9
Rows per page
Query Builder