Lucene search
K

6 matches found

OSV
OSV
added 2024/11/22 2:23 p.m.2 views

OESA-2024-2469 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

8.8CVSS7.3AI score0.04422EPSS
Exploits1References5
OSV
OSV
added 2024/11/22 2:23 p.m.3 views

OESA-2024-2467 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

8.8CVSS7.3AI score0.04422EPSS
Exploits1References5
OSV
OSV
added 2024/11/22 2:23 p.m.2 views

OESA-2024-2466 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

8.8CVSS7.3AI score0.04422EPSS
Exploits1References5
NVD
NVD
added 2024/11/14 1:15 p.m.30 views

CVE-2024-10976

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

5.4CVSS0.00786EPSS
Exploits0References3
OSV
OSV
added 2024/11/14 1:15 p.m.7 views

AZL-53215 CVE-2024-10976 affecting package postgresql for versions less than 16.5-1

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

5.4CVSS7.1AI score0.00786EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/14 1:0 p.m.44 views

CVE-2024-10976 PostgreSQL row security below e.g. subqueries disregards user ID changes

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...

4.2CVSS0.00786EPSS
Exploits0References1
Rows per page
Query Builder