Lucene search
+L

10 matches found

susecve
susecve
added 2023/02/15 3:55 a.m.6 views

SUSE CVE-2020-17446

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS7.7AI score0.02417EPSS
Exploits0References2
github
github
added 2021/04/20 4:30 p.m.73 views

Asyncpg Arbitrary Code Execution Via Access to an Uninitialized Pointer

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS9.2AI score0.02417EPSS
Exploits0References6Affected Software1
osv
osv
added 2021/04/20 4:30 p.m.31 views

GHSA-2XPJ-F5G2-8P7M Asyncpg Arbitrary Code Execution Via Access to an Uninitialized Pointer

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS9.4AI score0.02417EPSS
Exploits0References7
veracode
veracode
added 2020/08/13 1:55 a.m.26 views

Denial Of Service (DoS)

asyncpg is vulnerable to denial of service DoS. The vulnerability exists due to the access to an uninitialized pointer in the array data decoder through a server response...

9.8CVSS3.4AI score0.02417EPSS
Exploits0References3Affected Software1
osv
osv
added 2020/08/12 4:15 p.m.5 views

DEBIAN-CVE-2020-17446

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS9AI score0.02417EPSS
Exploits0References1
prion
prion
added 2020/08/12 4:15 p.m.21 views

Code injection

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

7.5CVSS9.5AI score0.02417EPSS
Exploits0References2Affected Software2
pypa
pypa
added 2020/08/12 4:15 p.m.6 views

PYSEC-2020-24

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS7.7AI score0.02417EPSS
Exploits0References3Affected Software1
osv
osv
added 2020/08/12 4:15 p.m.6 views

UBUNTU-CVE-2020-17446

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS7.6AI score0.02417EPSS
Exploits0References3
osv
osv
added 2020/08/12 4:15 p.m.27 views

PYSEC-2020-24

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS4.5AI score0.02417EPSS
Exploits0References3
debiancve
debiancve
added 2020/08/12 3:56 p.m.37 views

CVE-2020-17446

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code on a database client via a crafted server response, because of access to an uninitialized pointer in the array data decoder...

9.8CVSS9AI score0.02417EPSS
Exploits0
Rows per page
Query Builder