Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/12/17 8:7 a.m.2 views

CVE-2025-14758

Incorrect configuration of replication security in the MariaDB component of the infra-operator in YAOOK Operator allows an on-path attacker to read database contents, potentially including credentials...

6.5CVSS6.8AI score0.00021EPSS
Exploits0References1
NVD
NVDadded 2025/12/16 1:15 a.m.5 views

CVE-2025-14758

Incorrect configuration of replication security in the MariaDB component of the infra-operator in YAOOK Operator allows an on-path attacker to read database contents, potentially including credentials...

6.5CVSS0.00021EPSS
Exploits0References1
CVE
CVEadded 2025/12/16 12:33 a.m.4 views

CVE-2025-14758

The CVE-2025-14758 entry concerns the YAOOK Operator’s infra-operator, where a misconfiguration in the replication security of the MariaDB component could allow an on-path attacker to read database contents, potentially including credentials. This is documented across multiple feeds (NVD, Red Hat...

6.5CVSS6.4AI score0.00021EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/16 12:0 a.m.1 views

PT-2025-51347

Name of the Vulnerable Software and Affected Versions YAOOK Operator affected versions not specified Description An incorrect configuration of replication security within the MariaDB component of the infra-operator in YAOOK Operator could allow an on-path attacker to read database contents, which...

6.5CVSS6.3AI score0.00021EPSS
Exploits0References5
CNNVD
CNNVDadded 2025/12/16 12:0 a.m.2 views

YAOOK Operator 安全漏洞

YAOOK Operator is an automated control component for deploying and managing OpenStack cloud services from YAOOK Germany. A security vulnerability exists in YAOOK Operator, which stems from improperly configured replication security and could lead to the disclosure of database contents...

6.5CVSS6.4AI score0.00021EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2020/09/08 10:6 a.m.4 views

postgresql: Uncontrolled search path element in logical replication

A flaw was found in PostgreSQL, where it did not properly sanitize the searchpath during logical replication. This flaw allows an authenticated attacker to use this flaw in an attack similar to CVE-2018-1058 to execute an arbitrary SQL command in the user's context for replication. The highest...

8.8CVSS7.3AI score0.81248EPSS
Exploits1References4
OSV
OSVadded 2020/09/02 6:22 p.m.4 views

OPENSUSE-SU-2020:1326-1 Security update for postgresql10

This update for postgresql10 fixes the following issues: - update to 10.14: CVE-2020-14349, bsc1175193: Set a secure searchpath in logical replication walsenders and apply workers CVE-2020-14350, bsc1175194: Make contrib modules' installation scripts more secure...

7.3CVSS7.2AI score0.01548EPSS
Exploits1References5
OSV
OSVadded 2020/08/18 10:8 a.m.7 views

SUSE-SU-2020:2264-1 Security update for postgresql10

This update for postgresql10 fixes the following issues: - update to 10.14: CVE-2020-14349, bsc1175193: Set a secure searchpath in logical replication walsenders and apply workers CVE-2020-14350, bsc1175194: Make contrib modules' installation scripts more secure...

7.3CVSS7.8AI score0.01548EPSS
Exploits1References5
Rows per page
Query Builder