CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 3 days ago•6 views

RHSA-2026:22304 Red Hat Security Advisory: postgresql-jdbc security update

Bulletin has no description...

RedHat Linux•added 4 days ago•11 views

Exploits0References9

Important: Red Hat Security Advisory: postgresql-jdbc security update

An update for postgresql-jdbc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

OPENSUSE Linux•added 4 days ago•7 views

Security update for postgresql-jdbc (important)

openSUSE security update: security update for postgresql-jdbc ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20847-1 Rating: important References: bsc1264174 Cross-References: CVE-2026-42198 CVSS scores: CVE-2026-42198 SUSE : 7.5...

OSV•added last week•3 views

Exploits0References1

OPENSUSE-SU-2026:20847-1 Security update for postgresql-jdbc

This update for postgresql-jdbc fixes the following issue - CVE-2026-42198: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication bsc1264174...

7.5CVSS7.1AI score0.00043EPSS

Tenable Nessus•added 2026/05/26 12:0 a.m.•8 views

SUSE SLES15 Security Update : postgresql-jdbc (SUSE-SU-2026:2028-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:2028-1 advisory. This update for postgresql-jdbc fixes the following issue - CVE-2026-42198: client-side denial of service via malicious SCRAM-SHA-256...

7.5CVSS5.9AI score0.00043EPSS

Exploits0References4

OSV•added 2026/05/22 1:22 p.m.•1 views

OESA-2026-2445 postgresql-jdbc security update

PostgreSQL JDBC Driver PgJDBC for short allows Java programs to connect to a PostgreSQL database using standard, database independent Java code. Is an open source JDBC driver written in Pure Java Type 4, and communicates in the PostgreSQL native network protocol. Security Fixes: pgjdbc is an open...

OSV•added 2026/05/22 1:22 p.m.•2 views

OESA-2026-2444 postgresql-jdbc security update

OSV•added 2026/05/22 1:22 p.m.•2 views

OESA-2026-2443 postgresql-jdbc security update

SUSE Linux•added 2026/05/20 9:8 a.m.•4 views

Security update for postgresql-jdbc

This update for postgresql-jdbc fixes the following issue CVE-2026-42198: client-side denial of service via malicious SCRAM-SHA-256 authentication bsc1264174. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

OSV•added 2026/05/20 9:8 a.m.•1 views

Exploits0References4

SUSE-SU-2026:2028-1 Security update for postgresql-jdbc

This update for postgresql-jdbc fixes the following issue - CVE-2026-42198: client-side denial of service via malicious SCRAM-SHA-256 authentication bsc1264174...

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Exploits0References3

Astra Linux - уязвимость в libpgjava

The PostgreSQL JDBC Driver also known as PgJDBC prior to version 42.2.13 allowed XXE...

7.7CVSS7.1AI score0.07801EPSS

Exploits0References1

OSV•added 2026/05/05 8:9 p.m.•1 views

GHSA-98QH-XJC8-98PQ pgjdbc: Unbounded PBKDF2 iterations in SCRAM authentication allows CPU exhaustion DoS

Summary pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. Impact A malicious server can instruct the driver to perform SCRAM authentication with a very large iteration count. With a large enough value, the client spends an unbounded amount of CPU time...