Lucene search
+L

17 matches found

nessus
nessus
added 2024/06/03 12:0 a.m.27 views

RHEL 7 : postgresql-jdbc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jdbc-postgresql: Unchecked Class Instantiation when providing Plugin Classes CVE-2022-21724 - A weakness...

9.8CVSS8.8AI score0.0301EPSS
Exploits1References2
ibm
ibm
added 2023/06/16 3:20 p.m.52 views

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Summary IBM Cloud Pak for Security includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version of Cloud Pak for Security...

9.8CVSS10AI score0.99615EPSS
Exploits18Affected Software1
ibm
ibm
added 2023/02/15 11:24 a.m.61 views

Security Bulletin: IBM Security Verify Governance is vulnerable to arbitrary code execution, sensitive information exposure and unauthorized access due to PostgreSQL

Summary IBM Security Verify Governance is vulnerable to arbitrary code execution, sensitive information exposure and unauthorized access due to vulnerabilities in PostgreSQL JAR CVE-2022-26520, CVE-2022-21724, CVE-2020-13692, CVE-2022-31197, 220313. The fix involves upgrading the PostgreSQL JAR t...

9.8CVSS9AI score0.04094EPSS
Exploits2Affected Software1
ibm
ibm
added 2023/01/12 9:59 p.m.87 views

Security Bulletin: A vulnerability in PostgreSQL JDBC Driver (PgJDBC) affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2022-21724)

Summary A vulnerability in PostgreSQL JDBC Driver PgJDBC affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data CVE-2022-21724. Please see the details below on how to remediate this issue. Vulnerability Details CVEID:CVE-2022-21724 DESCRIPTION: PostgreSQL JDBC Driver PgJDBC could...

9.8CVSS8.4AI score0.0301EPSS
Exploits1Affected Software1
ibm
ibm
added 2022/09/21 7:33 p.m.61 views

Security Bulletin: A security vulnerability has been identified in Postgresql shipped with IBM Tivoli Netcool Impact (CVE-2022-26520, CVE-2022-21724, 220313)

Summary Postgresql is shipped with IBM Tivoli Netcool Impact. Information about a security vulnerability affecting Postgresql has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-26520 DESCRIPTION: DISPUTED In pgjdbc before 42.3.3, an attacker who controls the jdbc URL ...

9.8CVSS9.1AI score0.0301EPSS
Exploits1Affected Software1
nessus
nessus
added 2022/07/31 12:0 a.m.52 views

Debian DSA-5196-1 : libpgjava - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5196 advisory. - PostgreSQL JDBC Driver aka PgJDBC before 42.2.13 allows XXE. CVE-2020-13692 - pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in th...

9.8CVSS8.1AI score0.04094EPSS
Exploits1References11
nessus
nessus
added 2022/06/22 12:0 a.m.63 views

EulerOS 2.0 SP8 : postgresql-jdbc (EulerOS-SA-2022-1946)

According to the versions of the postgresql-jdbc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security...

9.8CVSS8.4AI score0.0301EPSS
Exploits1References2
nessus
nessus
added 2022/05/23 12:0 a.m.39 views

Debian DLA-3018-1 : libpgjava - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3018 advisory. - pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the...

9.8CVSS8.4AI score0.0301EPSS
Exploits1References5
redhat
redhat
added 2022/05/18 10:56 a.m.131 views

Moderate: Red Hat Security Advisory: Red Hat build of Quarkus 2.7.5 release and security update

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability. For more information...

9.8CVSS6.5AI score0.0301EPSS
Exploits6References13
atlassian
atlassian
added 2022/04/20 8:14 p.m.173 views

Vulnerable version of PostgresSQL JDBC driver used - CVE-2022-21724

Affected versions of Atlassian Jira Server and Data Center used versions of the PostgresSQL JDBC driver that were vulnerable to CVE-2022-21724. The affected versions of Atlassian Jira Server and Data Center are before version 8.22.2. Affected versions: version 8.22.2 Fixed versions: 8.22.2 and...

9.8CVSS8.8AI score0.0301EPSS
Exploits1
osv
osv
added 2022/02/26 11:3 a.m.4 views

OESA-2022-1535 postgresql-jdbc security update

PostgreSQL JDBC Driver PgJDBC for short allows Java programs to connect to a PostgreSQL database using standard, database independent Java code. Is an open source JDBC driver written in Pure Java Type 4, and communicates in the PostgreSQL native network protocol. Security Fixes: pgjdbc is the...

9.8CVSS7.6AI score0.0301EPSS
Exploits1References2
nvd
nvd
added 2022/02/02 12:15 p.m.27 views

CVE-2022-21724

pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attacked when attacker control the jdbc url or properties. pgjdbc instantiates plugin instances based o...

9.8CVSS0.0301EPSS
Exploits1References6
wolfi
wolfi
added 2022/02/02 12:15 p.m.163 views

CVE-2022-21724 vulnerabilities

Vulnerabilities for packages: mariadb...

9.8CVSS9.7AI score0.0301EPSS
Exploits1
cgr
cgr
added 2022/02/02 12:15 p.m.84 views

CVE-2022-21724 vulnerabilities

Vulnerabilities for packages: mariadb...

9.8CVSS9.5AI score0.0301EPSS
Exploits1
cve
cve
added 2022/02/02 11:48 a.m.819 views

CVE-2022-21724

CVE-2022-21724 affects the official PostgreSQL JDBC Driver (libpgjava) used by pgjdbc. The vulnerability stems from the driver instantiating plugin classes based on connection properties (authenticationPluginClassName, sslhostnameverifier, socketFactory, sslfactory, sslpasswordcallback) without v...

9.8CVSS8.4AI score0.0301EPSS
Exploits1References6Affected Software1
debiancve
debiancve
added 2022/02/02 11:48 a.m.74 views

CVE-2022-21724

pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attacked when attacker control the jdbc url or properties. pgjdbc instantiates plugin instances based o...

9.8CVSS8.8AI score0.0301EPSS
Exploits1
cvelist
cvelist
added 2022/02/02 11:48 a.m.31 views

CVE-2022-21724 Unchecked Class Instantiation when providing Plugin Classes

pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attacked when attacker control the jdbc url or properties. pgjdbc instantiates plugin instances based o...

7CVSS9.7AI score0.0301EPSS
Exploits1References6
Rows per page
Query Builder