Lucene search
K

48 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : rh-postgresql96-postgresql-9.6.10-1.AXS4 (AXSA:2018-3314:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3314:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...

9.1CVSS6.7AI score0.14142EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-1058

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to...

8.8CVSS7.2AI score0.14142EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2024/12/07 2:0 a.m.26 views

K000148899: PostgreSQL vulnerabilities CVE-2018-1058, CVE-2018-1053, CVE-2017-7547, CVE-2017-7486, and CVE-2017-7484

Security Advisory Description CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are...

8.8CVSS6.8AI score0.14142EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 6 : postgresql (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - postgresql: Start scripts permit database administrator to modify root-owned files CVE-2017-15097 -...

8.8CVSS7.7AI score0.14142EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.8 views

RHEL 7 : postgresql (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - postgresql: Uncontrolled search path element in pgdump and other client applications CVE-2018-1058 - It w...

8.8CVSS7.8AI score0.14142EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.23 views

RHEL 6 / 7 : rh-postgresql95-postgresql (RHSA-2018:2511)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2511 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstre...

8.8CVSS6.8AI score0.14142EPSS
Exploits1References14
F5 Networks
F5 Networks
added 2023/12/11 10:21 p.m.38 views

K000137875: PostGreSQL vulnerability CVE-2018-1058

Security Advisory Description A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected...

8.8CVSS7.4AI score0.14142EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.32 views

Mageia: Security Advisory (MGASA-2018-0446)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.14142EPSS
Exploits1References13
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:0876-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.14142EPSS
Exploits1References6
Prion
Prion
added 2020/08/24 1:15 p.m.25 views

Sql injection

It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the searchpath during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the...

4.6CVSS8.1AI score0.14142EPSS
Exploits1References9Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2020/05/27 8:42 a.m.54 views

Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerabilities (CVE-2018-1058, CVE-2018-10936, CVE-2019-9193)

Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to security vulnerabilities 3 issues for Postgresql: 1 for a flaw in the searchpath setting2, 1 for a failure to check the host name if a host name verifier was not provided to the driver and...

9CVSS1.6AI score0.91877EPSS
Exploits18Affected Software1
Openbugbounty
Openbugbounty
added 2020/02/09 10:40 a.m.10 views

rmusamorganite.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1088425 Security Researcher MrRain1996 Helped patch 1059 vulnerabilities Received 5 Coordinated Disclosure badges Received 9 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting rmusamorganite.com websi...

Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/22 10:30 p.m.34 views

Security Bulletin: IBM Security Information Queue uses database components with known vulnerabilities (CVE-2016-3506, CVE-2018-1058, CVE-2018-10936, CVE-2019-9193)

Summary IBM Security Information Queue ISIQ relies on older Oracle JDBC and PostgreSQL JAR files that have known vulnerabilities. As of v1.0.5, ISIQ switched to newer, secure versions of the JAR files. Vulnerability Details CVEID: CVE-2016-3506 DESCRIPTION: Unspecified vulnerability in the JDBC...

9CVSS0.4AI score0.91877EPSS
Exploits18Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.23 views

Photon OS 1.0: Postgresql PHSA-2018-1.0-0122

An update of the postgresql package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0122. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS7.7AI score0.14142EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2018/12/13 3:15 p.m.136 views

Important: Red Hat Security Advisory: CloudForms 4.6.6 security, bug fix and enhancement update

An update is now available for CloudForms Management Engine 5.9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

8.8CVSS6.7AI score0.14142EPSS
Exploits1References66
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-3589-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.14142EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2018/08/20 10:51 a.m.74 views

Important: Red Hat Security Advisory: rh-postgresql95-postgresql security update

An update for rh-postgresql95-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.14142EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.36 views

Photon OS 1.0: Postgresql PHSA-2018-1.0-0122 (deprecated)

An update of 'postgresql' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0122. The text itself is copyright C VMware, Inc...

8.8CVSS7.8AI score0.14142EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/04/10 12:0 a.m.32 views

openSUSE Security Update : postgresql94 (openSUSE-2018-340)

This update for postgresql94 fixes the following issues : Security issues fixed : - CVE-2018-1058: Fixed uncontrolled search path element in pgdump and other client applications bsc1081925. Bug fixes : - See release notes for details : -...

8.8CVSS7AI score0.14142EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/04/06 12:0 a.m.31 views

SUSE SLED12 / SLES12 Security Update : postgresql94 (SUSE-SU-2018:0876-1)

This update for postgresql94 fixes the following issues: Security issues fixed : - CVE-2018-1058: Fixed uncontrolled search path element in pgdump and other client applications bsc1081925. Bug fixes : - See release notes for details : - https://www.postgresql.org/docs/9.4/static/release-9-4-17.ht...

8.8CVSS7AI score0.14142EPSS
Exploits1References6
Rows per page
Query Builder