Lucene search
K

20 matches found

AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in pgagent

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator was used when generating the directory name, which allowed a local attacker to pre-create the directory...

7.1CVSS6AI score0.00171EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/10/20 12:0 a.m.3 views

Debian: Security Advisory (DLA-4338-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.8AI score0.00171EPSS
Exploits0References2
Debian
Debian
added 2025/10/18 12:35 p.m.20 views

[SECURITY] [DLA 4338-1] pgagent security update

Debian LTS Advisory DLA-4338-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson October 18, 2025 https://wiki.debian.org/LTS Package : pgagent Version : 4.0.0-8+deb11u1 CVE ID : CVE-2025-0218 Debian Bug : 1092677 When batch jobs are executed by pgAgent, a script...

7.1CVSS6AI score0.00171EPSS
Exploits0
OSV
OSV
added 2025/10/18 12:0 a.m.3 views

DLA-4338-1 pgagent - security update

Bulletin has no description...

7.1CVSS7AI score0.00171EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/18 12:0 a.m.4 views

Debian dla-4338 : pgagent - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4338 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4338-1 [email protected] https://www.debian.org/lts/security/...

7.1CVSS5.7AI score0.00171EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-1553

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:56 a.m.10 views

CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS6.5AI score0.00171EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2025-0218

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficientl...

7.1CVSS6.1AI score0.00171EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/09 12:20 a.m.2 views

SUSE CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS6.6AI score0.00171EPSS
Exploits0References3
OSV
OSV
added 2025/01/07 8:15 p.m.10 views

CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS6.5AI score
Exploits0References2
NVD
NVD
added 2025/01/07 8:15 p.m.13 views

CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS0.00171EPSS
Exploits0References2
OSV
OSV
added 2025/01/07 8:15 p.m.1 views

DEBIAN-CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS5.6AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2025/01/07 8:15 p.m.4 views

UBUNTU-CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS5.8AI score0.00171EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/01/07 7:18 p.m.7 views

CVE-2025-0218

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

7.1CVSS5.6AI score0.00171EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/01/07 7:18 p.m.14 views

CVE-2025-0218 pgAgent scheduled batch job scripts are created in a predictable temporary directory potentially allowing a denial of service

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

5.5CVSS6.9AI score0.00171EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 7:18 p.m.81 views

CVE-2025-0218

CVE-2025-0218 affects pgAgent: when batch jobs run, a script is created in a temporary directory. In pgAgent versions before 4.2.3, the directory name is generated using an insufficiently seeded RNG, allowing a local attacker to pre-create the directory and disrupt job execution (DoS). Affected: ...

7.1CVSS5.4AI score0.00171EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/01/07 7:18 p.m.16 views

CVE-2025-0218 pgAgent scheduled batch job scripts are created in a predictable temporary directory potentially allowing a denial of service

When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...

5.5CVSS0.00171EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.6 views

pgAgent 安全漏洞

pgAgent is an open source job scheduler for PostgreSQL from the pgAdmin Project. A security vulnerability exists in pgAgent versions prior to 4.2.3 that stems from insufficient initialization of the random number generator used to generate directory names, which allows a local attacker to...

7.1CVSS5.2AI score0.00171EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/07 12:0 a.m.3 views

PT-2025-3788 · Pgagent +1 · Pgagent +1

Name of the Vulnerable Software and Affected Versions: pgAgent versions prior to 4.2.3 Description: The issue arises when pgAgent executes batch jobs, creating a script in a temporary directory before execution. In affected versions, an insufficiently seeded random number generator is used to...

7.1CVSS6.7AI score0.00171EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2019/07/23 12:0 a.m.4 views

The vulnerability of the DBconn::GetLastError function in the pgagent scheduling software, which allows a hacker to cause a service failure.

The vulnerability of the DBconn::GetLastError function in the pgagent scheduling software from the pgagent package is related to errors during the swapping of the zero pointer 0x0000000000407209. Exploiting this vulnerability could allow an attacker to trigger a service failure through a speciall...

6.2CVSS5.5AI score
Exploits0References1Affected Software2
Rows per page
Query Builder