Lucene search
K

46 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : rh-postgresql94-postgresql-9.4.14-2.AXS4 (AXSA:2017-2465:03)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2465:03 advisory. Privilege escalation flaws were found in the initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use...

7.2CVSS7.4AI score0.00586EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/10 5:40 a.m.5 views

CVE-2025-59470

This vulnerability allows a Backup Operator to perform remote code execution RCE as the postgres user by sending a malicious interval or order parameter...

9CVSS8.1AI score0.01487EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/10 5:40 a.m.4 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS8.2AI score0.0114EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.14 views

Veeam Backup and Replication < 13.0.1.1071 Multiple Vulnerabilities (January 2026) (KB4792)

The version of Veeam Backup and Replication installed on the remote Windows host is prior to 13.0.1.1071. It is, therefore, affected by multiple vulnerabilities: - This vulnerability allows a Backup or Tape Operator to perform remote code execution RCE as root by creating a malicious backup...

9.8CVSS8AI score0.01487EPSS
Exploits2References5
OSV
OSV
added 2026/01/08 5:15 p.m.5 views

CVE-2025-59470

This vulnerability allows a Backup Operator to perform remote code execution RCE as the postgres user by sending a malicious interval or order parameter...

9CVSS6.4AI score0.01487EPSS
Exploits2References1
OSV
OSV
added 2026/01/08 5:15 p.m.3 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS6.4AI score0.0114EPSS
Exploits0References1
NVD
NVD
added 2026/01/08 5:15 p.m.6 views

CVE-2025-59470

This vulnerability allows a Backup Operator to perform remote code execution RCE as the postgres user by sending a malicious interval or order parameter...

9CVSS0.01487EPSS
Exploits2References1
NVD
NVD
added 2026/01/08 5:15 p.m.7 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9.1CVSS0.0114EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 4:18 p.m.20 views

CVE-2025-59468

CVE-2025-59468 affects Veeam Backup & Replication. A Backup Administrator can achieve remote code execution as the postgres user by submitting a crafted password parameter. Red Hat and other sources corroborate the issue; Veeam’s KB4792 confirms the remediation: upgrade to 13.0.1.1071 where this ...

9.1CVSS8AI score0.0114EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/08 4:18 p.m.2 views

CVE-2025-59470

This vulnerability allows a Backup Operator to perform remote code execution RCE as the postgres user by sending a malicious interval or order parameter...

9CVSS7.7AI score0.01487EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/01/08 4:18 p.m.21 views

CVE-2025-59470

This vulnerability allows a Backup Operator to perform remote code execution RCE as the postgres user by sending a malicious interval or order parameter...

9CVSS0.01487EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2026/01/08 4:18 p.m.3 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9CVSS7.8AI score0.0114EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 4:18 p.m.21 views

CVE-2025-59468

This vulnerability allows a Backup Administrator to perform remote code execution RCE as the postgres user by sending a malicious password parameter...

9CVSS0.0114EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 4:18 p.m.44 views

CVE-2025-59470

The CVE-2025-59470 issue affects Veeam Backup & Replication (versions 13.0.1.180 and earlier). The vulnerability allows a user with Backup or Tape Operator privileges to trigger remote code execution as the postgres user by sending crafted interval or order parameters in backup configurations. Pu...

9CVSS7.9AI score0.01487EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.7 views

PT-2026-1821

Name of the Vulnerable Software and Affected Versions Veeam affected versions not specified Description The software contains a flaw that enables a Backup Administrator to execute code remotely as the postgres user. This is achieved by submitting a crafted password parameter. The issue allows for...

9CVSS7.1AI score0.0114EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.11 views

PT-2026-1644

Veeam Backup & Replication and Affected Versions Veeam Backup & Replication versions 13.0.1.180 and earlier Description A critical remote code execution RCE vulnerability exists in Veeam Backup & Replication software. This flaw, tracked as CVE-2025-59470, has a CVSS score of 9.0 and allows a user...

9CVSS8.6AI score0.01487EPSS
Exploits2References34
Zero Day Initiative
Zero Day Initiative
added 2024/04/09 12:0 a.m.22 views

Arista NG Firewall ReportEntry SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Arista NG Firewall. Authentication is required to exploit this vulnerability. The specific flaw exists within the ReportEntry class. The issue results from the lack of proper validation of a...

8.8CVSS8.1AI score0.08794EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/12/08 2:58 a.m.7 views

postgresql: Start scripts permit database administrator to modify root-owned files

Privilege escalation flaws were found in the Red Hat initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine...

7.2CVSS7.4AI score0.00541EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/12/08 2:58 a.m.5 views

postgresql: Start scripts permit database administrator to modify root-owned files

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine...

7.2CVSS7.4AI score0.00586EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/12/08 2:58 a.m.6 views

postgresql: Start scripts permit database administrator to modify root-owned files

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine...

7.2CVSS7.4AI score0.00586EPSS
Exploits0References5
Rows per page
Query Builder