CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

100 matches found

OPENSUSE Linux•added 2019/07/21 12:0 a.m.•175 views

Security update for postgresql10 (moderate)

openSUSE Security Update: Security update for postgresql10 Announcement ID: openSUSE-SU-2019:1773-1 Rating: moderate References: 1134689 1138034 Cross-References: CVE-2019-10130 CVE-2019-10164 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes two vulnerabilities is now...

9CVSS6.7AI score0.11379EPSS

Exploits0References2

Tenable Nessus•added 2019/07/11 12:0 a.m.•25 views

SUSE SLED15 / SLES15 Security Update : postgresql10 (SUSE-SU-2019:1810-1)

This update for postgresql10 fixes the following issues : Security issue fixed : CVE-2019-10164: Fixed buffer-overflow vulnerabilities in SCRAM verifier parsing bsc1138034. CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689. Bug fixes: Fo...

9CVSS6.3AI score0.11379EPSS

Exploits0References10

Tenable Nessus•added 2019/07/01 12:0 a.m.•36 views

openSUSE Security Update : postgresql96 (openSUSE-2019-1668)

This update for postgresql96 fixes the following issues : Security issue fixed : - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable...

4.3CVSS6.2AI score0.00254EPSS

Exploits0References2

OPENSUSE Linux•added 2019/06/30 12:0 a.m.•38 views

Security update for postgresql96 (moderate)

openSUSE Security Update: Security update for postgresql96 Announcement ID: openSUSE-SU-2019:1668-1 Rating: moderate References: 1134689 Cross-References: CVE-2019-10130 Affected Products: openSUSE Leap 42.3 An update that fixes one vulnerability is now available. Description: This update for...

4.3CVSS6.5AI score0.00254EPSS

Exploits0References1

Tenable Nessus•added 2019/06/25 12:0 a.m.•25 views

SUSE SLED12 / SLES12 Security Update : postgresql96 (SUSE-SU-2019:1687-1)

This update for postgresql96 fixes the following issues : Security issue fixed : CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

4.3CVSS6.3AI score0.00254EPSS

Exploits0References4

OSV•added 2019/06/24 11:14 a.m.•6 views

SUSE-SU-2019:1687-1 Security update for postgresql96

This update for postgresql96 fixes the following issues: Security issue fixed: - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689...

4.3CVSS6.4AI score0.00254EPSS

Exploits0References3

Tenable Nessus•added 2019/06/19 12:0 a.m.•36 views

openSUSE Security Update : postgresql10 (openSUSE-2019-1578)

This update for postgresql10 fixes the following issues : Security issue fixed : - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689. Bug fixes : - For a complete list of fixes check the release notes. -...

4.3CVSS6.2AI score0.00254EPSS

Exploits0References4

OSV•added 2019/06/14 2:19 p.m.•6 views

SUSE-SU-2019:1511-1 Security update for postgresql10

This update for postgresql10 fixes the following issues: Security issue fixed: - CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators bsc1134689. Bug fixes: - For a complete list of fixes check the release notes...

4.3CVSS6.3AI score0.00254EPSS

Exploits0References3

OSV•added 2019/05/09 12:0 a.m.•0 views

UBUNTU-CVE-2019-10130

A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain...

4.3CVSS6.5AI score0.00254EPSS

Exploits0References4

RedHat Linux•added 2018/08/27 8:35 a.m.•3 views

postgresql: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges

INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contents that the invoker lacks privilege to read. These exploits affect only tables where the attacker lacks full read access but has both INSERT and UPDATE...

6.5CVSS7.4AI score0.32989EPSS

Exploits0References5

RedHat Linux•added 2018/08/20 10:51 a.m.•2 views

postgresql: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges

6.5CVSS7.4AI score0.32989EPSS

Exploits0References5

Tenable Nessus•added 2017/12/07 12:0 a.m.•61 views

Amazon Linux AMI : postgresql95 / postgresql96 (ALAS-2017-930)

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.CVE-2017-12172 INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL disclose table...

8.1CVSS7.2AI score0.32989EPSS

Exploits0References4

Mageia•added 2017/11/29 6:52 p.m.•34 views

Updated postgresql packages fix security vulnerabilities

The startup log file for the postmaster in newer releases, "postgres" process was opened while the process was still owned by root. With this setup, the database owner could specify a file that they did not have access to and cause the file to be corrupted with logged data CVE-2017-12172. Crash d...

8.1CVSS0.7AI score0.32989EPSS

Exploits0References7

OSV•added 2017/11/22 6:29 p.m.•21 views

CVE-2017-15099

6.5CVSS6.8AI score

Exploits0References7