Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.28 views

RHEL 7 : postgresql-jdbc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - postgresql-jdbc: Arbitrary File Write Vulnerability CVE-2022-26520 - pgjdbc is an open source postgresql...

7.3AI score0.02999EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.33 views

RHEL 6 : postgresql-jdbc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - postgresql-jdbc: Arbitrary File Write Vulnerability CVE-2022-26520 - pgjdbc is an open source postgresql...

7.3AI score0.02999EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/16 3:20 p.m.52 views

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Summary IBM Cloud Pak for Security includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version of Cloud Pak for Security...

9.8CVSS10AI score0.99615EPSS
Exploits18Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/15 11:24 a.m.61 views

Security Bulletin: IBM Security Verify Governance is vulnerable to arbitrary code execution, sensitive information exposure and unauthorized access due to PostgreSQL

Summary IBM Security Verify Governance is vulnerable to arbitrary code execution, sensitive information exposure and unauthorized access due to vulnerabilities in PostgreSQL JAR CVE-2022-26520, CVE-2022-21724, CVE-2020-13692, CVE-2022-31197, 220313. The fix involves upgrading the PostgreSQL JAR t...

9.8CVSS9AI score0.04094EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/21 7:33 p.m.60 views

Security Bulletin: A security vulnerability has been identified in Postgresql shipped with IBM Tivoli Netcool Impact (CVE-2022-26520, CVE-2022-21724, 220313)

Summary Postgresql is shipped with IBM Tivoli Netcool Impact. Information about a security vulnerability affecting Postgresql has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-26520 DESCRIPTION: DISPUTED In pgjdbc before 42.3.3, an attacker who controls the jdbc URL ...

9.8CVSS9.1AI score0.0301EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/08/04 12:0 a.m.56 views

SUSE SLES15 / openSUSE 15 Security Update : postgresql-jdbc (SUSE-SU-2022:2655-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2655-1 advisory. - CVE-2022-26520: Fixed arbitrary File Write Vulnerability bsc1197356 Tenable has extracted the preceding description block...

9.8CVSS7.4AI score0.02999EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/08/04 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2022:2655-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02999EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/31 12:0 a.m.52 views

Debian DSA-5196-1 : libpgjava - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5196 advisory. - PostgreSQL JDBC Driver aka PgJDBC before 42.2.13 allows XXE. CVE-2020-13692 - pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in th...

9.8CVSS8.1AI score0.04094EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2022/07/07 2:19 p.m.173 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.11.0 release and security update

A minor version update from 7.10 to 7.11 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scorin...

10CVSS7.1AI score0.77735EPSS
Exploits49References61
UbuntuCve
UbuntuCve
added 2022/03/10 5:47 p.m.52 views

CVE-2022-26520

In pgjdbc before 42.3.3, an attacker who controls the jdbc URL or properties can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. An example situation is that an attacker could create an executable JSP file under a Tomcat...

9.8CVSS7.1AI score0.02999EPSS
Exploits0References3
OSV
OSV
added 2022/03/07 5:0 p.m.8 views

CVE-2022-26520

In pgjdbc before 42.3.3, an attacker who controls the jdbc URL or properties can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. An example situation is that an attacker could create an executable JSP file under a Tomcat...

9.8CVSS9.4AI score0.02999EPSS
Exploits0References7
Rows per page
Query Builder