Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 3: postgresql:15 (TSSA-2023:0230)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0230 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.2CVSS6.7AI score0.0119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/12/23 12:0 a.m.17 views

Amazon Linux 2 : postgresql (ALASPOSTGRESQL14-2024-014)

The version of postgresql installed on the remote host is prior to 14.14-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL14-2024-014 advisory. Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change...

8.8CVSS7.3AI score0.04422EPSS
Exploits1References10
NVD
NVD
added 2024/11/14 1:15 p.m.30 views

CVE-2024-10976

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

5.4CVSS0.00786EPSS
Exploits0References3
Prion
Prion
added 2023/06/09 7:15 p.m.28 views

Code injection

Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security...

5.5CVSS6AI score0.00694EPSS
Exploits0References3Affected Software3
RedhatCVE
RedhatCVE
added 2023/05/16 11:23 a.m.36 views

CVE-2023-2455

A flaw was found in PostgreSQL, which could permit incorrect policies being applied in certain cases where role-specific policies are used and a given query is planned under one role and executed under other roles. This scenario can happen under security definer functions, or when a common user a...

4.2CVSS5.9AI score0.00694EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/05/12 12:0 a.m.35 views

CVE-2023-2455

Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security...

5.4CVSS6.8AI score0.00694EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/04/22 12:0 a.m.13 views

PostgreSQL 9.1 < 9.1.20 / 9.2 < 9.2.15 / 9.3 < 9.3.11 / 9.4 < 9.4.6 / 9.5 < 9.5.1 Multiple Vulnerabilities

Binary data 9264.prm...

9.1CVSS7.3AI score0.06948EPSS
Exploits0References10
Rows per page
Query Builder