CVE-2024-43613 Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

CVE-2024-43613 Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

CVE-2024-49042

CVE-2024-49042 concerns an elevation-of-privilege vulnerability in Azure Database for PostgreSQL Flexible Server . The connected documents describe a vulnerability in the Flexible Server component and note a failure in proper cleanup at the management level, enabling privilege escalation. Some so...

CVE-2024-49042 Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

CVE-2024-49042 Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

...

Security Bulletin: IBM Sterling Connect:Direct Web Services is affected by PostgreSQL TOCTOU vulnerability

Summary IBM Sterling Connect:Direct Web Services uses PostgreSQL, PostgreSQL could allow a remote authenticated attacker to gain elevated privileges on the system, caused by a tme-of-check time-of-use TOCTOU race condition in pgdump. Vulnerability Details CVEID:CVE-2024-7348 DESCRIPTION: PostgreS...

This Week in Spring - November 12th, 2024

Hi, Spring fans! Welcome to another installment of This Week in Spring! Spring Cloud 2024.0.0-RC1 aka Moorgate has been released In this installment of A Bootiful Podcast , I talk to Gradle developer advocate Baruch Sadogursky good news everybody! GraalVM will now support jcmd, which allows you t...

Microsoft Azure Database for PostgreSQL 命令注入漏洞

Microsoft Azure Database for PostgreSQL is a fully managed database service from Microsoft Corporation USA capable of handling mission-critical workloads with predictable performance, security, high availability, and dynamic scalability. A command injection vulnerability exists in Microsoft Azure...

Microsoft Azure Database for PostgreSQL 命令注入漏洞

Microsoft Azure Database for PostgreSQL is a fully managed database service from Microsoft Corporation USA capable of handling mission-critical workloads with predictable performance, security, high availability, and dynamic scalability. A command injection vulnerability exists in Microsoft Azure...

PT-2024-10315 · Microsoft · Azure Database For Postgresql Flexible Server

Name of the Vulnerable Software and Affected Versions: Azure Database for PostgreSQL Flexible Server affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in the Azure Database for PostgreSQL Flexible Server. It is associated with a failure t...

KLA77104 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Database for PostgreSQL Flexible Server Extension...

PT-2024-10316 · Microsoft · Azure Database For Postgresql Flexible Server

Name of the Vulnerable Software and Affected Versions: Azure Database for PostgreSQL Flexible Server affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Azure Database for PostgreSQL Flexible Server. It is associated with a failure to...

K000148478: PostgreSQL pgAdmin vulnerability CVE-2024-9014

Security Advisory Description pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data. CVE-2024-9014 Impact There is no impact; F...

RHEL 8 : postgresql:12 (RHSA-2024:6559)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6559 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdum...

RHEL 8 : postgresql:12 (RHSA-2024:6000)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6000 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdum...

RHEL 9 : postgresql:15 (RHSA-2024:6020)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6020 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement...

RHEL 8 : postgresql:13 (RHSA-2024:6018)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6018 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdum...

RHEL 8 : postgresql:13 (RHSA-2024:6141)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6141 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL relation replacement during pgdum...