Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

BDU FSTEC
BDU FSTECadded 2019/11/25 12:0 a.m.2 views

The vulnerability of the “pg_upgrade” command implementation in the PostgreSQL database management system allows a hacker to gain access to arbitrary files.

The vulnerability of the “pgupgrade” command in the PostgreSQL database management system is related to errors during the creation of temporary files in the current working directory. Exploiting this vulnerability can allow an attacker to gain access to arbitrary files...

7CVSS6.5AI score0.00088EPSS
Exploits0References11Affected Software5
OSV
OSVadded 2018/02/24 11:25 p.m.10 views

MGASA-2018-0137 Updated postgresql packages fix security vulnerability

In postgresql 9.4.x before 9.4.16 and 9.6.x before 9.6.7, pgupgrade creates file in current working directory containing the output of pgdumpall -g under umask which was in effect when the user invoked pgupgrade, and not under 0077 which is normally used for other temporary files. This can allow ...

7CVSS6.7AI score0.00088EPSS
Exploits0References5
PostrgeSql
PostrgeSqladded 2018/02/08 12:0 a.m.597 views

Vulnerability in client (CVE-2018-1053)

pgupgrade creates file of sensitive metadata under prevailing umask...

7CVSS6.9AI score0.00088EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder