Lucene search
K

58 matches found

F5 Networks
F5 Networks
added 2024/12/07 2:0 a.m.26 views

K000148899: PostgreSQL vulnerabilities CVE-2018-1058, CVE-2018-1053, CVE-2017-7547, CVE-2017-7486, and CVE-2017-7484

Security Advisory Description CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are...

8.8CVSS6.8AI score0.14142EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2017-0316)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.61566EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2017:2258-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2017:2355-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2017:2236-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2017:2356-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2017-1232)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.61566EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2017-1231)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.61566EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.31 views

openSUSE Security Update : postgresql95 (openSUSE-2018-204)

This update for postgresql95 fixes the following issues : Upate to PostgreSQL 9.5.11 : Security issues fixed : - https://www.postgresql.org/docs/9.5/static/release-9-5-11.html - CVE-2018-1053, boo1077983: Ensure that all temporary files made by pgupgrade are non-world-readable. - boo1079757: Rena...

9.8CVSS6.7AI score0.61566EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2018/02/23 12:0 a.m.31 views

openSUSE: Security Advisory for postgresql95 (openSUSE-SU-2018:0529-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/11 12:0 a.m.41 views

Amazon Linux AMI : postgresql96 (ALAS-2017-908)

The pgusermappings view discloses passwords to users lacking server privileges : An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote authenticated attacker could potentially use this flaw to retrieve passwords from the user...

9.8CVSS7.1AI score0.61566EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/10/10 12:0 a.m.30 views

EulerOS 2.0 SP2 : postgresql (EulerOS-SA-2017-1232)

According to the versions of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an emp...

9.8CVSS7.2AI score0.61566EPSS
Exploits0References3
Amazon
Amazon
added 2017/10/06 12:0 a.m.35 views

Medium: postgresql96

Issue Overview: The pgusermappings view discloses passwords to users lacking server privileges: An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote authenticated attacker could potentially use this flaw to retrieve passwords...

9.8CVSS9.8AI score0.61566EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/15 12:0 a.m.41 views

Scientific Linux Security Update : postgresql on SL7.x x86_64 (20170914)

The following packages have been upgraded to a later upstream version: postgresql 9.2.23. Security Fixes : - It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an empty password. A remote attacker could potentially...

9.8CVSS7.1AI score0.61566EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2017/09/15 12:0 a.m.32 views

RedHat Update for postgresql RHSA-2017:2728-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.61566EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/09/15 12:0 a.m.25 views

CentOS Update for postgresql CESA-2017:2728 centos7

Check the version of postgresql SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882769";...

9.8CVSS7.1AI score0.61566EPSS
Exploits0References2
Cent OS
Cent OS
added 2017/09/14 11:1 p.m.87 views

postgresql security update

CentOS Errata and Security Advisory CESA-2017:2728 An update for postgresql is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

9.8CVSS6.8AI score0.61566EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2017/09/14 12:0 a.m.42 views

RHEL 7 : postgresql (RHSA-2017:2728)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2728 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstream...

9.8CVSS7.3AI score0.61566EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2017/09/13 12:0 a.m.26 views

openSUSE Security Update : postgresql94 (openSUSE-2017-1020)

This update for postgresql94 fixes the following issues : - CVE-2017-7547: Further restrict visibility of pgusermappings.umoptions, to protect passwords stored as user mapping options. bsc1051685 - CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. bsc1051684 -...

9.8CVSS7.1AI score0.61566EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/09/13 12:0 a.m.31 views

openSUSE Security Update : postgresql96 (openSUSE-2017-1021)

This update for postgresql96 fixes the following issues : - CVE-2017-7547: Further restrict visibility of pgusermappings.umoptions, to protect passwords stored as user mapping options. bsc1051685 - CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. bsc1051684 -...

9.8CVSS7.1AI score0.61566EPSS
Exploits0References7
Rows per page
Query Builder