19 matches found
CVE-2021-22028
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability...
CVE-2021-22030
In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitivecredential information in the logs of the database. A malicious user with access to logs can read sensitivecredentials information about users...
EUVD-2023-35455
Malicious code in bioql PyPI...
EUVD-2021-9199
Malicious code in bioql PyPI...
EUVD-2021-9197
Malicious code in bioql PyPI...
CVE-2023-31131
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
CVE-2023-31131
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
Path traversal
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
CVE-2023-31131
CVE-2023-31131 affects Greenplum Database (GPDB). The vulnerability arises from unsafe tar extraction within GPPKGs in versions prior to 6.22.3, enabling a path traversal that can lead to arbitrary file writes. An attacker could overwrite data or system files, potentially causing crashes or malfu...
CVE-2023-31131 Arbitrary File Write when Extracting Tarballs in greenplum-db
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
CVE-2023-31131 Arbitrary File Write when Extracting Tarballs in greenplum-db
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
CVE-2023-31131 Arbitrary File Write when Extracting Tarballs in greenplum-db
Greenplum Database GPDB is an open source data warehouse based on PostgreSQL. In versions prior to 6.22.3 Greenplum Database used an unsafe methods to extract tar files within GPPKGs. greenplum-db is vulnerable to path traversal leading to arbitrary file writes. An attacker can use this...
Greenplum Database 路径遍历漏洞
Greenplum Database is an advanced , full-featured open source data warehouse based on PostgreSql . It is used to analyze massively parallel PostgreSql. A path traversal vulnerability exists in Greenplum Database GPDB versions prior to 6.22.3, which is a path traversal vulnerability that originate...
CVE-2021-22030
In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitivecredential information in the logs of the database. A malicious user with access to logs can read sensitivecredentials information about users...
CVE-2021-22028
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability...
CVE-2021-22028
In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability...
CVE-2021-22030
Greenplum Database prior to 5.28.14 and 6.17.0: statements can cause sensitive credential information to be logged, enabling a user with log access to read credentials. Multiple connected sources (Red Hat, NVD, Veracode, OSV, CVE lists) corroborate this disclosure; no explicit exploit details or ...
Greenplum Database 路径遍历漏洞
Greenplum Database is an advanced , full-featured open source data warehouse based on PostgreSql . It is used to analyze massively parallel PostgreSql. A security vulnerability exists in Greenplum Database versions prior to 5.28.6 and 6.14.0, which stems from a lack of restriction and filtering o...
Greenplum Database 日志信息泄露漏洞
Greenplum Database is an advanced , full-featured open source data warehouse based on PostgreSql . It is used to analyze massively parallel PostgreSql. A security vulnerability exists in Greenplum Database versions prior to 5.28.6 and 6.14.0, which stems from a problem with the database's...