Lucene search
K

200 matches found

AlmaLinux
AlmaLinux
added 2023/04/11 12:0 a.m.35 views

Moderate: postgresql security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Extension scripts replace objects not belonging to the extension. CVE-2022-2625 postgresql: Client memory disclosure when connecting with Kerberos to modified server CVE-2022-41862 For more...

8CVSS6.7AI score0.0152EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2023/04/06 3:52 p.m.36 views

postgresql:13 security update

An update is available for module.pgaudit, module.postgres-decoderbufs, postgresql, pgrepack, postgres-decoderbufs, module.postgresql, pgaudit, module.pgrepack. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8CVSS6.7AI score0.0152EPSS
Exploits0
Fedora
Fedora
added 2023/03/11 3:55 a.m.19 views

[SECURITY] Fedora 38 Update: python-flask-2.2.3-1.fc38

Flask is called a =EF=BF=BD=EF=BF=BD=EF=BF=BDmicro-framework=EF=BF=BD=EF=BF =BD=EF=BF=BD because the idea to keep the core simple but extensible. There is no database abstraction layer, no form validation or anything else where different libraries already exist that can handle that. However Flask...

1.6AI score
Exploits0
OSV
OSV
added 2023/01/12 8:25 a.m.26 views

RLSA-2023:0113 Moderate: postgresql:10 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: Extension scripts replace objects not belonging to the extension. CVE-2022-2625 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other relat...

7.1CVSS7.7AI score0.0152EPSS
Exploits0References2
CVE
CVE
added 2022/12/12 1:49 a.m.63 views

CVE-2022-2808

CVE-2022-2808 affects the Algan Software Prens Student Information System prior to version 2.1.11. The connected PT-2022-18798 entry clarifies the issue as an Authorization Bypass Through User-Controlled Key vulnerability that enables Object-Relational Mapping Injection and is accompanied by an a...

8.8CVSS7.3AI score0.00656EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/12/12 1:49 a.m.26 views

CVE-2022-2808 IDOR in Prens Student Information System

Authorization Bypass Through User-Controlled Key vulnerability in Algan Software Prens Student Information System allows Object Relational Mapping Injection. This issue affects Prens Student Information System: before 2.1.11...

8.8CVSS8.9AI score0.00656EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/12/02 3:0 p.m.2 views

CVE-2022-2808

Authorization Bypass Through User-Controlled Key vulnerability in Algan Software Prens Student Information System allows Object Relational Mapping Injection. This issue affects Prens Student Information System: before 2.1.11...

8.8CVSS7.3AI score0.00656EPSS
Exploits0References3
NVD
NVD
added 2022/12/02 12:15 p.m.24 views

CVE-2022-2808

Authorization Bypass Through User-Controlled Key vulnerability in Algan Software Prens Student Information System allows Object Relational Mapping Injection. This issue affects Prens Student Information System: before 2.1.11...

8.8CVSS0.00656EPSS
Exploits0References2
Prion
Prion
added 2022/12/02 12:15 p.m.17 views

Authorization

Authorization Bypass Through User-Controlled Key vulnerability in Algan Software Prens Student Information System allows Object Relational Mapping Injection.This issue affects Prens Student Information System: before 2.1.11...

6.5CVSS8.6AI score0.00656EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/02 12:0 a.m.5 views

PT-2022-18798 · Algan · Algan Software Prens Student Information System

Name of the Vulnerable Software and Affected Versions: Algan Software Prens Student Information System versions prior to 2.1.11 Description: The issue allows for Object Relational Mapping Injection due to an Authorization Bypass Through User-Controlled Key vulnerability. It also involves an...

8.8CVSS7.4AI score0.00656EPSS
Exploits0References8
Rockylinux
Rockylinux
added 2022/10/25 7:32 a.m.33 views

postgresql:12 security update

An update is available for pgrepack, postgresql, pgaudit, postgres-decoderbufs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PostgreSQL is an advanced...

8CVSS7.9AI score0.0152EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/10/13 6:38 p.m.53 views

USN-5676-1: PostgreSQL vulnerability

Alexander Lakhin discovered that PostgreSQL incorrectly handled the security restricted operation sandbox when a privileged user is maintaining another user’s objects. An attacker having permission to create non-temp objects can use this issue to execute arbitrary commands as the superuser...

8.8CVSS7.7AI score0.12403EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2022/05/24 11:46 a.m.106 views

USN-5440-1: PostgreSQL vulnerability

Alexander Lakhin discovered that PostgreSQL incorrectly handled the security restricted operation sandbox when a privileged user is maintaining another user's objects. An attacker having permission to create non-temp objects can use this issue to execute arbitrary commands as the superuser...

8.8CVSS7.7AI score0.12403EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/06/14 7:54 a.m.43 views

Important: Red Hat Security Advisory: postgresql:9.6 security update

An update for the postgresql:9.6 module is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

8.8CVSS6.9AI score0.0199EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2021/05/18 6:17 a.m.18 views

new module: postgresql:13

PostgreSQL is an advanced object-relational database management system DBMS. This enhancement update adds the postgresql:13 module to AlmaLinux BZ1855776 For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

2AI score
Exploits0References1
OSV
OSV
added 2021/05/18 6:17 a.m.9 views

ALEA-2021:1869 new module: postgresql:13

PostgreSQL is an advanced object-relational database management system DBMS. This enhancement update adds the postgresql:13 module to AlmaLinux BZ1855776 For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

6.7AI score
Exploits0References1
Fedora
Fedora
added 2021/02/26 1:10 a.m.87 views

[SECURITY] Fedora 33 Update: postgresql-12.6-1.fc33

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

8.8CVSS8.2AI score0.4644EPSS
Exploits0
Fedora
Fedora
added 2021/02/26 1:9 a.m.38 views

[SECURITY] Fedora 32 Update: postgresql-12.6-1.fc32

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

0.8AI score
Exploits0
OpenVAS
OpenVAS
added 2021/02/26 12:0 a.m.8 views

Fedora: Security Advisory for postgresql (FEDORA-2021-3db6876545)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/01/18 4:22 p.m.139 views

Important: Red Hat Security Advisory: postgresql:10 security update

An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

9CVSS7.2AI score0.4644EPSS
Exploits0References10
Rows per page
Query Builder