Lucene search
K

28 matches found

RedHat Linux
RedHat Linux
added 2020/12/22 8:55 a.m.20 views

postgresql: Selectivity estimators bypass row security policies

PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain values taken from the column. PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit thi...

4.3CVSS7.2AI score0.01085EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/12/17 3:56 p.m.19 views

postgresql: Selectivity estimators bypass row security policies

PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain values taken from the column. PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit thi...

4.3CVSS7.2AI score0.01085EPSS
Exploits0References5
Veracode
Veracode
added 2020/10/23 8:59 a.m.24 views

Authorization Bypass

postgresql is vulnerable to authroization bypass. The selectivity estimators allows an attacker to bypass row security policies and view common values of certain columns...

4.3CVSS5.4AI score0.01085EPSS
Exploits0References6Affected Software2
RedHat Linux
RedHat Linux
added 2020/10/21 1:8 p.m.26 views

postgresql: Selectivity estimators bypass row security policies

PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain values taken from the column. PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit thi...

4.3CVSS7.2AI score0.01085EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/09/08 10:6 a.m.12 views

postgresql: Selectivity estimators bypass row security policies

PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain values taken from the column. PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit thi...

4.3CVSS7.2AI score0.01085EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/03/26 12:30 p.m.6 views

postgresql: Selectivity estimators bypass row security policies

PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain values taken from the column. PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit thi...

4.3CVSS7.2AI score0.01085EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2019/07/30 4:13 p.m.31 views

CVE-2019-10130

Removed by vendor...

4.3CVSS6.5AI score0.01085EPSS
Exploits0
OSV
OSV
added 2019/05/09 12:0 a.m.4 views

UBUNTU-CVE-2019-10130

A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain...

4.3CVSS6.5AI score0.01085EPSS
Exploits0References4
Rows per page
Query Builder