Lucene search
K

31 matches found

OSV
OSV
added 2026/03/06 12:41 p.m.2 views

OESA-2026-1513 libpq security update

PostgreSQL is a powerful, open source object-relational database system that uses and extends the SQL language combined with many features that safely store and scale the most complicated data workloads. This package provides the essential shared library for any PostgreSQL client program or...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
OSV
OSV
added 2026/03/06 12:41 p.m.2 views

OESA-2026-1512 libpq security update

PostgreSQL is a powerful, open source object-relational database system that uses and extends the SQL language combined with many features that safely store and scale the most complicated data workloads. This package provides the essential shared library for any PostgreSQL client program or...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.10 views

Amazon Linux 2023 : postgresql17, postgresql17-contrib, postgresql17-llvmjit (ALAS2023-2026-1457)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1457 advisory. Improper validation of type oidvector in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References10
RedHat Linux
RedHat Linux
added 2026/03/05 2:46 p.m.3 views

postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

A type validation flaw has been discovered in PostgreSQL. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.3 views

TencentOS Server 4: postgresql (TSSA-2026:0125)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0125 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References5
SUSE CVE
SUSE CVE
added 2026/02/13 12:26 a.m.5 views

SUSE CVE-2026-2004

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References35
OSV
OSV
added 2026/02/12 2:16 p.m.3 views

CVE-2026-2004

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.2AI score0.00785EPSS
Exploits0References1
OSV
OSV
added 2026/02/12 2:16 p.m.4 views

AZL-77423 CVE-2026-2004 affecting package postgresql for versions less than 16.12-1

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/12 1:0 p.m.5 views

CVE-2026-2004 PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/12 12:0 a.m.8 views

PostgreSQL 安全漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Security vulnerabilities existed in versions prior to PostgreSQL...

8.8CVSS6.1AI score0.00785EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2026/02/12 12:0 a.m.7 views

PostgreSQL -- Multiple vulnerabilities

The PostgreSQL project reports: Improper validation of type oidvector in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Missing...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References1
Rows per page
Query Builder