Lucene search
K

31 matches found

RedHat Linux
RedHat Linux
added 2017/07/31 3:52 p.m.7 views

postgresql: pg_user_mappings view discloses foreign server passwords

It was found that the pgusermappings view could disclose information about user mappings to a foreign database to non-administrative database users. A database user with USAGE privilege for this mapping could, when querying the view, obtain user mapping data, such as the username and password use...

7.5CVSS7.3AI score0.06331EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/07/05 5:44 a.m.9 views

postgresql: pg_user_mappings view discloses foreign server passwords

It was found that the pgusermappings view could disclose information about user mappings to a foreign database to non-administrative database users. A database user with USAGE privilege for this mapping could, when querying the view, obtain user mapping data, such as the username and password use...

7.5CVSS7.3AI score0.06331EPSS
Exploits0References5
Amazon
Amazon
added 2017/06/06 12:0 a.m.30 views

Medium: postgresql93, postgresql94, postgresql95

Issue Overview: Selectivity estimators bypass SELECT privilege checks It was found that some selectivity estimation functions did not check user privileges before providing information from pgstatistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some...

7.5CVSS7.3AI score0.06331EPSS
Exploits0
NVD
NVD
added 2017/05/12 7:29 p.m.15 views

CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS7.4AI score0.06331EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2017/05/12 7:29 p.m.24 views

CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS6.9AI score0.06331EPSS
Exploits0References2
OSV
OSV
added 2017/05/12 7:29 p.m.2 views

UBUNTU-CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS6.9AI score0.06331EPSS
Exploits0References3
OSV
OSV
added 2017/05/12 7:29 p.m.24 views

CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS7.5AI score
Exploits0References10
OSV
OSV
added 2017/05/12 7:29 p.m.2 views

ALPINE-CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS6.8AI score0.06331EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/12 7:0 p.m.30 views

CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.4AI score0.06331EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2017/05/12 7:0 p.m.24 views

CVE-2017-7486

Removed by vendor...

7.5CVSS7.8AI score0.06331EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/05/12 7:0 p.m.35 views

CVE-2017-7486

PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pgusermappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server...

7.5CVSS7.5AI score0.06331EPSS
Exploits0
Rows per page
Query Builder