Lucene search
K

5 matches found

UbuntuCve
UbuntuCve
added 2025/08/14 1:15 p.m.3 views

CVE-2025-8714

Untrusted data inclusion in pgdump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pgdumpall is also affected. pgrestore is affected...

8.8CVSS7.4AI score0.00709EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/05/08 3:15 p.m.8 views

CVE-2025-4207

Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of service on platforms where a 1-byte over-read can elicit process termination. This affects the database server and also libpq. Versions before PostgreSQL 17.5, 16.9, 15.13,...

5.9CVSS6.8AI score0.00637EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/11/14 1:15 p.m.8 views

CVE-2024-10978

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

4.2CVSS6.8AI score0.00705EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/11/14 1:15 p.m.9 views

CVE-2024-10977

Client use of server error message in PostgreSQL allows a server not trusted under current SSL or GSS settings to furnish arbitrary non-NUL bytes to the libpq application. For example, a man-in-the-middle attacker could send a long error message that a human or screen-scraper user of psql mistake...

3.7CVSS6.8AI score0.0038EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/05/13 12:0 a.m.29 views

CVE-2021-32029

A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality...

6.5CVSS6.8AI score0.01398EPSS
Exploits0References4
Rows per page
Query Builder