Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13232 matches found

Tenable Nessus
Tenable Nessusadded 2023/08/31 12:0 a.m.28 views

Rocky Linux 9 : postgresql (RLSA-2023:3714)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:3714 advisory. - schemaelement defeats protective searchpath changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with...

7.2CVSS6.7AI score0.0119EPSS
Exploits0References5
Broadcom
Broadcomadded 2023/08/29 12:0 a.m.21 views

PostgreSQL vulnerability in SANnav 2.2.0.2

A vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, the ability to lure or wait for an administrator to create or update an affected extension in that schema, and the ability to lure or wait for a victim to use the objec...

8CVSS7.6AI score0.0152EPSS
Exploits0Affected Software1
Broadcom
Broadcomadded 2023/08/29 12:0 a.m.40 views

Vulnerable postgresql component found in SANnav RPM package

pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either PreparedStatement.setTextint, InputStream or PreparedStatemet.setByteaint, InputStream will create a temporary file if the InputStream is larger than 2k. This will create a temporary file which...

5.5CVSS6.9AI score0.00491EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTECadded 2023/08/29 12:0 a.m.2 views

The vulnerability of the HUP signal handler in PostgreSQL database management systems allows a attacker to trigger a service failure.

The vulnerability of the HUP signal handler in PostgreSQL database management systems is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS5.8AI score0.00361EPSS
Exploits1References3Affected Software1
Rockylinux
Rockylinuxadded 2023/08/28 6:40 p.m.32 views

postgresql:10 security update

An update is available for module.postgresql, postgresql. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PostgreSQL is an advanced object-relational database...

7.2CVSS6.8AI score0.0119EPSS
Exploits0
OSV
OSVadded 2023/08/28 6:40 p.m.33 views

RLSA-2023:4539 Moderate: postgresql:10 security update

PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: schemaelement defeats protective searchpath changes CVE-2023-2454 postgresql: row security policies disregard user ID changes after inlining. CVE-2023-2455 For more details about the security...

7.2CVSS6.4AI score0.0119EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2023/08/28 3:47 p.m.29 views

CVE-2020-21469

A flaw was found in PostgreSQL 12.2. This issue may allow an attacker to cause a denial of service via repeatedly sending SIGHUP signals...

4.4CVSS4.9AI score0.00361EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2023/08/28 12:0 a.m.32 views

Rocky Linux 8 : postgresql:10 (RLSA-2023:4539)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:4539 advisory. - schemaelement defeats protective searchpath changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with...

7.2CVSS6.7AI score0.0119EPSS
Exploits0References5
Rapid7 Blog
Rapid7 Blogadded 2023/08/25 9:26 p.m.45 views

Metasploit Weekly Wrap-Up

PowershellPoint This week’s new features and improvements start with two new exploit modules leveraging CVE-2023-34960 Chamilo versions 1.11.18 and below and CVE-2023-26469 in Jorani 1.0.0. Like CVE-2023-34960, I too, feel attacked by PowerPoint sometimes. We also have several improvements,...

7.5CVSS10.4AI score0.99333EPSS
Exploits14
OSV
OSVadded 2023/08/23 8:19 a.m.7 views

SUSE-SU-2023:3384-1 Security update for postgresql15

This update for postgresql15 fixes the following issues: - Update to 12.16 - CVE-2023-39417: Fixed potential SQL injection for trusted extensions. bsc1214059...

8.8CVSS9.3AI score0.01572EPSS
Exploits0References3
OSV
OSVadded 2023/08/22 7:16 p.m.6 views

CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.4CVSS4.7AI score0.00361EPSS
Exploits1References3
NVD
NVDadded 2023/08/22 7:16 p.m.15 views

CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.4CVSS5AI score0.00361EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2023/08/22 7:16 p.m.29 views

CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.4CVSS6.3AI score0.00361EPSS
Exploits1References3
Prion
Prionadded 2023/08/22 7:16 p.m.15 views

Code injection

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

1.4CVSS7.4AI score0.00361EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2023/08/22 7:16 p.m.2 views

UBUNTU-CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.4CVSS7.3AI score0.00361EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2023/08/22 12:0 a.m.1 views

PT-2023-4539 · Unknown +1 · Postgresql +1

Name of the Vulnerable Software and Affected Versions: PostgreSQL version 12.2 Description: The issue is related to a buffer copy without checking the size of the input data in the signal handler for SIGHUP signals in PostgreSQL. This could potentially allow a remote attacker to cause a denial of...

7.8CVSS8.6AI score0.00361EPSS
Exploits1References21
CNNVD
CNNVDadded 2023/08/22 12:0 a.m.9 views

PostgreSQL 安全漏洞

PostgreSQL is a free object-relational database management system from the PostgreSQL organization. The system supports most of the SQL standards and provides many other features such as foreign keys, triggers, views, and more. A security vulnerability exists in PostgreSQL version 12.2 that could...

4.4CVSS6AI score0.00361EPSS
Exploits1References4
CVE
CVEadded 2023/08/22 12:0 a.m.349 views

CVE-2020-21469

POInted vulnerability: CVE-2020-21469 affects PostgreSQL 12.2; allows denial-of-service by repeatedly sending SIGHUP signals. Note: vendor disputes claim that untrusted users cannot send SIGHUP; signals would require a PostgreSQL superuser, pg_reload_conf access, or OS-level privileges. Public ex...

4.4CVSS4.6AI score0.00361EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/08/22 12:0 a.m.24 views

CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.6AI score0.00361EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2023/08/22 12:0 a.m.25 views

CVE-2020-21469

An issue was discovered in PostgreSQL 12.2 allows attackers to cause a denial of service via repeatedly sending SIGHUP signals. NOTE: this is disputed by the vendor because untrusted users cannot send SIGHUP signals; they can only be sent by a PostgreSQL superuser, a user with pgreloadconf access...

4.4CVSS5AI score0.00361EPSS
Exploits1
Rows per page
Query Builder