Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2025/11/13 1:0 p.m.1 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the libpq client library functions. An attacker can cause the client application to crash or experience a segmentation fault by sending specially crafted PostgreSQL protocol data that triggers integer...

8.8CVSS6.5AI score0.00048EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-45026

Malicious code in bioql PyPI...

3.7CVSS6.3AI score0.0032EPSS
Exploits0References6
Amazon
Amazonadded 2025/06/02 12:0 a.m.3 views

Medium: postgresql17

Issue Overview: Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5...

5.9CVSS6.8AI score0.00326EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/05/14 12:0 a.m.4 views

Alibaba Cloud Linux 3 : 0068: libpq (ALINUX3-SA-2024:0068)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0068 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-41862: In PostgreSQL, a modified,...

3.7CVSS6.4AI score0.0032EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/10/24 12:0 a.m.21 views

Amazon Linux 2023 : postgresql15, postgresql15-contrib, postgresql15-llvmjit (ALAS2023-2023-387)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-387 advisory. 2024-02-29: CVE-2022-41862 was added to this advisory. In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryptio...

7.5CVSS6.3AI score0.01526EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2023/04/06 12:0 a.m.40 views

PostgreSQL 12.x < 12.14 / 13.x < 13.10 / 14.x < 14.7 / 15.x < 15.2 Information Disclosure

The version of PostgreSQL installed on the remote host is potentially affected by an information disclosure vulnerability. In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server ca...

3.7CVSS6.4AI score0.0032EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2023/04/04 9:56 a.m.3 views

postgresql: Client memory disclosure when connecting with Kerberos to modified server

A flaw was found In PostgreSQL. A modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions, a server can cause a libpq client to over-read and report an error message containing uninitialized bytes...

3.7CVSS6.8AI score0.0032EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2023/02/15 12:0 a.m.39 views

SUSE SLES12 Security Update : postgresql15 (SUSE-SU-2023:0393-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0393-1 advisory. - In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryptio...

3.7CVSS6.4AI score0.0032EPSS
Exploits0References4
Rows per page
Query Builder