CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2024/03/19 6:9 p.m.•19 views

Important: Red Hat Security Advisory: postgresql security update

An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

RedHat Linux•added 2024/03/19 6:5 p.m.•31 views

Important: Red Hat Security Advisory: postgresql security update

An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

RedHat Linux•added 2024/03/19 6:5 p.m.•5 views

postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL

8CVSS7.5AI score0.01465EPSS

Tenable Nessus•added 2024/03/19 12:0 a.m.•11 views

RHEL 8 : postgresql (RHSA-2024:1426)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1426 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: non-owner 'REFRESH MATERIALIZED VIEW...

Tenable Nessus•added 2024/03/19 12:0 a.m.•25 views

RHEL 8 : postgresql (RHSA-2024:1429)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1429 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: non-owner 'REFRESH MATERIALIZED VIEW...

Tenable Nessus•added 2024/03/19 12:0 a.m.•16 views

RHEL 8 : postgresql (RHSA-2024:1428)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1428 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: non-owner 'REFRESH MATERIALIZED VIEW...

Tenable Nessus•added 2024/03/19 12:0 a.m.•21 views

RHEL 8 : postgresql (RHSA-2024:1422)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1422 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: non-owner 'REFRESH MATERIALIZED VIEW...

OpenVAS•added 2024/03/19 12:0 a.m.•9 views

Debian: Security Advisory (DLA-3764-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8AI score0.01465EPSS

Debian•added 2024/03/18 3:47 p.m.•27 views

[SECURITY] [DLA 3764-1] postgresql-11 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3764-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk March 18, 2024 https://wiki.debian.org/LTS -...

8CVSS8.4AI score0.01465EPSS

Exploits0

RedHat Linux•added 2024/03/18 1:47 a.m.•2 views

postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL

8CVSS7.5AI score0.01465EPSS

RedHat Linux•added 2024/03/18 1:47 a.m.•22 views

Important: Red Hat Security Advisory: postgresql:10 security update

An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

Amazon•added 2024/03/18 12:0 a.m.•4 views

Low: libpq

Issue Overview: In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes...

3.7CVSS7.1AI score0.00616EPSS

Exploits0

Amazon•added 2024/03/18 12:0 a.m.•4 views

Low: libpq

3.7CVSS7.1AI score0.00616EPSS

Exploits0

BDU FSTEC•added 2024/03/18 12:0 a.m.•3 views

The vulnerability in the sanitize.go component of the PostgreSQL pgx tool set allows a malicious actor to execute arbitrary SQL queries.

The vulnerability in the sanitize.go component of the PostgreSQL pgx tool set is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries remotely...

8.1CVSS7AI score0.00854EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2024/03/18 12:0 a.m.•31 views

Amazon Linux 2 : libpq (ALASPOSTGRESQL12-2024-010)

The version of libpq installed on the remote host is prior to 12.15-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL12-2024-010 advisory. In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos...

3.7CVSS6.4AI score0.00616EPSS

Tenable Nessus•added 2024/03/18 12:0 a.m.•22 views

Debian dla-3764 : libecpg-compat3 - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3764 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3764-1 [email protected] https://www.debian.org/lts/security/...

Tenable Nessus•added 2024/03/18 12:0 a.m.•22 views

Amazon Linux 2 : libpq (ALASPOSTGRESQL14-2024-010)

The version of libpq installed on the remote host is prior to 14.8-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL14-2024-010 advisory. In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos...

3.7CVSS6.4AI score0.00616EPSS

Tenable Nessus•added 2024/03/18 12:0 a.m.•24 views

RHEL 8 : postgresql:10 (RHSA-2024:1348)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1348 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: non-owner 'REFRESH MATERIALIZED VIEW...