Lucene search
K

148 matches found

RedHat Linux
RedHat Linux
added 2023/12/13 8:6 a.m.9 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
NVD
NVD
added 2023/12/12 7:15 a.m.37 views

CVE-2023-41117

An issue was discovered in EnterpriseDB Postgres Advanced Server EPAS before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It contain packages, standalone packages, and functions that run SECURITY DEFINER but are inadequately secured against...

9.8CVSS0.00759EPSS
Exploits0References1
OSV
OSV
added 2023/12/12 7:15 a.m.4 views

CVE-2023-41117

An issue was discovered in EnterpriseDB Postgres Advanced Server EPAS before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It contain packages, standalone packages, and functions that run SECURITY DEFINER but are inadequately secured against...

9.8CVSS5.8AI score0.00759EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/12 12:0 a.m.7 views

PT-2023-27800 · Enterprisedb · Enterprisedb Postgres Advanced Server

Name of the Vulnerable Software and Affected Versions: EnterpriseDB Postgres Advanced Server versions prior to 11.21.32 EnterpriseDB Postgres Advanced Server versions prior to 12.16.20 EnterpriseDB Postgres Advanced Server versions prior to 13.12.16 EnterpriseDB Postgres Advanced Server versions...

9.8CVSS9.3AI score0.00759EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/12/12 12:0 a.m.6 views

EnterpriseDB Postgres Advanced Server Security Vulnerability

EnterpriseDB Postgres Advanced Server EPAS is an application from EnterpriseDB, Inc. It is used to extend the functionality of Postgres databases. A security vulnerability exists in EnterpriseDB Postgres Advanced Server that originates from the inclusion of packages, standalone packages, and...

9.8CVSS6.8AI score0.00759EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/12/12 12:0 a.m.8 views

CVE-2023-41117

An issue was discovered in EnterpriseDB Postgres Advanced Server EPAS before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It contain packages, standalone packages, and functions that run SECURITY DEFINER but are inadequately secured against...

8.8CVSS6.8AI score0.00759EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/12 12:0 a.m.42 views

CVE-2023-41117

An issue was discovered in EnterpriseDB Postgres Advanced Server EPAS before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It contain packages, standalone packages, and functions that run SECURITY DEFINER but are inadequately secured against...

8.8CVSS9.6AI score0.00759EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.9 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/07 8:26 a.m.3 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/06 9:55 a.m.4 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/12/06 9:51 a.m.3 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/29 2:18 p.m.3 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/28 4:5 p.m.3 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/19 2:43 p.m.7 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/08/08 8:46 a.m.5 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/08/08 8:46 a.m.4 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/31 9:24 a.m.11 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/27 1:35 p.m.6 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/06/22 12:0 a.m.17 views

Oracle Linux 9 : postgresql (ELSA-2023-3714)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3714 advisory. 13.11-1.0.1 - Fixed postgresql port binding issue during bootup Orabug: 35420628 13.11-1 - Update to 13.11 - Resolves: 2207935 Tenable has extracted th...

7.2CVSS6.5AI score0.0119EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/06/21 2:48 p.m.71 views

postgresql: row security policies disregard user ID changes after inlining.

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

5.4CVSS7.3AI score0.00694EPSS
Exploits0References5
Rows per page
Query Builder