Lucene search
K

86 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.4 views

RockyLinux 8 : postgresql:15 (RLSA-2023:7884)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:7884 advisory. postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls...

8.8CVSS6.9AI score0.04322EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 8 : postgresql:10 (AXSA:2023-6326:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6326:01 advisory. postgresql: schemaelement defeats protective searchpath changes CVE-2023-2454 postgresql: row security policies disregard user ID changes after...

7.2CVSS8.3AI score0.0119EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2172

Malware in sbrugna...

4.3CVSS6.1AI score0.01085EPSS
Exploits0References20
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2023-33940

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00694EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24811

Malicious code in bioql PyPI...

3.1CVSS6.1AI score0.00205EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43142

Malicious code in bioql PyPI...

4.3CVSS6AI score0.00956EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2025/08/14 11:29 p.m.3 views

SUSE CVE-2025-8713

PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide. PostgreSQL maintains statistics for tables by sampling data available in columns; this...

4.3CVSS6.7AI score0.00205EPSS
Exploits0References22
OSV
OSV
added 2025/08/14 1:15 p.m.7 views

CVE-2025-8713

PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide. PostgreSQL maintains statistics for tables by sampling data available in columns; this...

3.1CVSS7.8AI score0.00205EPSS
Exploits0References1
Snyk
Snyk
added 2025/08/14 1:0 p.m.0 views

Exposure of Sensitive Information Through Metadata

Overview Affected versions of this package are vulnerable to Exposure of Sensitive Information Through Metadata via optimizer statistics. An attacker can access sensitive sampled data by querying views, partitions, or child tables by crafting a leaky operator that bypasses view access control lis...

4.3CVSS7.2AI score0.00205EPSS
Exploits0References2
PostrgeSql
PostrgeSql
added 2025/08/14 12:0 a.m.38 views

Vulnerability in core server (CVE-2025-8713)

PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intende...

3.1CVSS6.6AI score0.00205EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/13 12:0 a.m.22 views

CBL Mariner 2.0 Security Update: postgresql (CVE-2023-2455)

The version of postgresql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2455 advisory. - Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policie...

5.4CVSS6.5AI score0.00694EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.28 views

EulerOS 2.0 SP8 : postgresql (EulerOS-SA-2023-3146)

According to the versions of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - schemaelement defeats protective searchpath changes; It was found that certain database calls in PostgreSQL could permit an authed attacker...

8.8CVSS7.4AI score0.01572EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/12/20 9:45 a.m.3 views

postgresql: MERGE fails to enforce UPDATE or SELECT row security policies

A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows...

4.3CVSS7.3AI score0.00956EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/12/20 12:0 a.m.62 views

RHEL 9 : postgresql:15 (RHSA-2023:7885)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7885 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Buffer overrun from integer overflo...

8.8CVSS7AI score0.04322EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.24 views

AlmaLinux 9 : postgresql:15 (ALSA-2023:7785)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:7785 advisory. postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls CVE-2023-58...

8.8CVSS6.9AI score0.04322EPSS
Exploits0References6
OSV
OSV
added 2023/12/13 12:0 a.m.36 views

ALSA-2023:7785 Important: postgresql:15 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls CVE-2023-5868 postgresql: extension script @substitutions@...

8.8CVSS8.2AI score0.04322EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.8 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.3 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/06 9:55 a.m.2 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/10/24 12:0 a.m.25 views

Amazon Linux 2023 : postgresql15, postgresql15-contrib, postgresql15-llvmjit (ALAS2023-2023-387)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-387 advisory. 2024-02-29: CVE-2022-41862 was added to this advisory. In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryptio...

7.5CVSS6.3AI score0.01807EPSS
Exploits0References8
Rows per page
Query Builder