Lucene search
K

70 matches found

Redos
Redos
added 2025/05/13 12:0 a.m.21 views

ROS-2-522

2.522 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS9.4AI score0.0199EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.18 views

ROS-2-1437

2.1437 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.4AI score0.0199EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.21 views

ROS-2-1316

2.1316 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.5AI score0.0199EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.35 views

ROS-2-876

2.876 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.4AI score0.0199EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.25 views

Amazon Linux 2 : postgresql (ALASPOSTGRESQL13-2023-003)

The version of postgresql installed on the remote host is prior to 13.3-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL13-2023-003 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...

8.8CVSS7.4AI score0.0199EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.28 views

Amazon Linux 2 : postgresql (ALASPOSTGRESQL12-2023-004)

The version of postgresql installed on the remote host is prior to 12.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL12-2023-004 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...

8.8CVSS7.1AI score0.0199EPSS
Exploits2References10
Amazon
Amazon
added 2023/09/25 12:0 a.m.8 views

Important: postgresql

Issue Overview: A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let authenticated database users write arbitrary bytes to a wide area of server memory. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

8.8CVSS7AI score0.0199EPSS
Exploits2
OSV
OSV
added 2023/08/31 12:14 p.m.1 views

BELL-CVE-2021-32029 CVE-2021-32029 does not affect BellSoft software

Bulletin has no description...

6.5CVSS5.8AI score0.01398EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/09/01 12:0 a.m.40 views

SUSE SLES15: libecpg6 / libpq5 / libpq5-32bit / postgresql12 / etc (SUSE-SU-2022:2958-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2958-1 advisory. - Upgrade to 12.12: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension...

8.8CVSS6.8AI score0.12403EPSS
Exploits0References31
OpenVAS
OpenVAS
added 2022/09/01 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:2958-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.12403EPSS
Exploits0References17
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/01 3:7 p.m.28 views

Security Bulletin: Due to use of PostgreSQL, IBM Robotic Process Automation with Automation Anywhere is vulnerable to data confidentiality (CVE-2021-32029)

Summary There are vulnerabilities in the PostgreSQL used by IBM Robotic Process Automation with Automation Anywhere. This affects the IBM Robotic Process Automation with Automation Anywhere control room application. Vulnerability Details Refer to the security bulletins listed in the...

6.5CVSS1.2AI score0.01398EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.29 views

Rocky Linux 8 : postgresql:13 (RLSA-2021:2375)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:2375 advisory. - A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. While modifying certain SQL array...

8.8CVSS7.4AI score0.0199EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2021-0221)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.0199EPSS
Exploits0References4
Redos
Redos
added 2021/12/24 12:0 a.m.36 views

ROS-2-544

2.544 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.4AI score0.0199EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/10/11 12:0 a.m.19 views

PostgreSQL 11.x < 11.12, 12.x < 12.7, 13.x < 13.3 Information Disclosure Vulnerability - Linux

PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS7.5AI score0.01398EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/10/11 12:0 a.m.28 views

PostgreSQL 11.x < 11.12, 12.x < 12.7, 13.x < 13.3 Information Disclosure Vulnerability - Windows

PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS7.5AI score0.01398EPSS
Exploits0References1
CVE
CVE
added 2021/10/08 4:44 p.m.362 views

CVE-2021-32029

CVE-2021-32029: PostgreSQL UPDATE ... RETURNING memory read vulnerability . A flaw in PostgreSQL allows an authenticated user to read arbitrary bytes of server memory by issuing an UPDATE ... RETURNING on a crafted table, exposing data confidentiality. Reports in multiple advisories (e.g., ALAS f...

6.5CVSS7.2AI score0.01398EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 1:26 p.m.36 views

Security Bulletin: IBM API Connect is impacted by a vulnerability in PostgreSQL (CVE-2021-32029)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2021-32029 DESCRIPTION: PostgreSQL could allow a remote authenticated attacker to obtain sensitive information, caused by an error when using an UPDATE…RETURNING command on a purpose-crafted table...

6.5CVSS1.3AI score0.01398EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/27 9:53 a.m.26 views

Security Bulletin: PostgreSQL Vulnerability Affects IBM Sterling Connect:Direct for Microsoft Windows (CVE-2021-32029)

Summary There is a vulnerability in PostgreSQL 11 and 12 used by IBM Sterling Connect:Direct for Microsoft Windows. IBM Sterling Connect:Direct for Microsoft Windows has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2021-32029 DESCRIPTION: PostgreSQL could allow a remote...

6.5CVSS1.7AI score0.01398EPSS
Exploits0Affected Software1
Redos
Redos
added 2021/09/08 12:0 a.m.12 views

ROS-2-1275

2.1275 Multiple vulnerabilities in PostgreSQL CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 1. Vulnerability Description: CVE-2021-32027 The vulnerability allows a remote attacker to execute arbitrary code on the target system. CVE-2021-32028, CVE-2021-32029 Vulnerability allows a remote user to...

8.8CVSS8.4AI score0.0199EPSS
Exploits1
Rows per page
Query Builder