CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

Tenable Nessus•added 2026/01/19 12:0 a.m.•5 views

MiracleLinux 8 : postgresql:10 (AXSA:2021-2311:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2311:01 advisory. postgresql: Buffer overrun from integer overflow in array subscripting calculations CVE-2021-32027 postgresql: Memory disclosure in INSERT ... ON...

8.8CVSS7.1AI score0.02046EPSS

Exploits0References3

Tenable Nessus•added 2026/01/16 12:0 a.m.•4 views

MiracleLinux 4 : rh-postgresql95-postgresql-9.5.14-1.AXS4 (AXSA:2018-3313:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3313:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...

8.8CVSS6.7AI score0.14142EPSS

Exploits1References7

Tenable Nessus•added 2026/01/16 12:0 a.m.•4 views

MiracleLinux 7 : rh-postgresql95-postgresql-9.5.14-1.el7 (AXSA:2018-3311:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3311:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...

8.8CVSS6.7AI score0.14142EPSS

Exploits1References7

Tenable Nessus•added 2024/04/27 12:0 a.m.•22 views

RHEL 6 / 7 : rh-postgresql96-postgresql (RHSA-2018:2566)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2566 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstre...

9.1CVSS6.8AI score0.14142EPSS

Exploits1References16

SUSE CVE•added 2023/02/15 4:27 a.m.•4 views

SUSE CVE-2018-10925

It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... ON CONFLICT DO UPDATE". An attacker with "CREATE TABLE" privileges could exploit this to read arbitrary bytes server...

7.1CVSS6.9AI score0.02241EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 3:41 a.m.•3 views

SUSE CVE-2021-32028

A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality...

6.5CVSS6.8AI score0.01449EPSS

Exploits0References19

OSV•added 2021/11/19 11:3 a.m.•4 views

OESA-2021-1439 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...

6.5CVSS7.3AI score0.01449EPSS

Exploits0References2

OSV•added 2021/10/11 5:15 p.m.•2 views

ALPINE-CVE-2021-32028

6.5CVSS6.6AI score0.01449EPSS

Exploits0References1

OSV•added 2021/10/11 5:15 p.m.•3 views

DEBIAN-CVE-2021-32028

6.5CVSS7.1AI score0.01449EPSS

Exploits0References1

OSV•added 2021/07/19 10:0 a.m.•9 views

OPENSUSE-SU-2021:1785-1 Security update for postgresql13

This update for postgresql13 fixes the following issues: - Upgrade to version 13.3: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations bsc1185924. - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists bsc1185925. -...

8.8CVSS7.5AI score0.02046EPSS

Exploits0References10