CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

OSV•added 2026/04/03 1:27 p.m.•2 views

JLSEC-2026-37

A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pgamcheck commands activated relevant protections too late or no...

8.8CVSS7.4AI score0.02263EPSS

Exploits0References12

OSV•added 2026/04/03 1:27 p.m.•1 views

JLSEC-2026-27

A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest...

8.8CVSS6.8AI score0.23757EPSS

Exploits0References10

OSV•added 2024/03/06 11:6 a.m.•47 views

BIT-POSTGRESQL-2020-25695

8.8CVSS7.3AI score0.23757EPSS

Exploits0References6

IBM Security Bulletins•added 2022/11/01 10:43 a.m.•47 views

Security Bulletin: Vulnerability in PostgreSQL may affect IBM Elastic Storage System

Summary PostgreSQL could allow a remote attacker to gain unauthorized access to the system which may affect IBM Elastic Storage System. Vulnerability Details CVEID:CVE-2022-1552 DESCRIPTION: PostgreSQL remote authenticated attacker to bypass security restrictions, caused by an issue with not...

8.8CVSS9.2AI score0.02263EPSS

Exploits0Affected Software1

ATTACKERKB•added 2022/08/31 4:15 p.m.•3 views

CVE-2022-1552

8.8CVSS7.2AI score0.02263EPSS

Exploits0References7

Debian CVE•added 2022/08/31 12:0 a.m.•38 views

CVE-2022-1552

8.8CVSS8.2AI score0.02263EPSS

Exploits0

Tenable Nessus•added 2022/06/06 12:0 a.m.•32 views

AlmaLinux 8 : postgresql:12 (ALSA-2022:4807)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:4807 advisory. postgresql: Autovacuum, REINDEX, and others omit security restricted operation sandbox CVE-2022-1552 Tenable has extracted the preceding description block directly...

8.8CVSS7.2AI score0.02263EPSS

Exploits0References2

RedHat Linux•added 2022/05/31 9:26 a.m.•2 views

postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox

8.8CVSS7.1AI score0.02263EPSS

Exploits0References6

PostrgeSql•added 2022/05/12 12:0 a.m.•58 views

Vulnerability in core server (CVE-2022-1552)

Autovacuum, REINDEX, and others omit "security restricted operation" sandbox Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pgamcheck made incomplete efforts to operate safely when a privileged user is maintaining another user's objects. Those commands activated releva...

8.8CVSS8.2AI score0.02263EPSS

Exploits0References1Affected Software1

RedHat Linux•added 2021/01/18 10:2 a.m.•4 views

postgresql: Multiple features escape "security restricted operation" sandbox

A flaw was found in postgresql. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

8.8CVSS7.4AI score0.23757EPSS

Exploits0References6

RedHat Linux•added 2021/01/18 10:2 a.m.•6 views

postgresql: Multiple features escape "security restricted operation" sandbox

8.8CVSS7.4AI score0.23757EPSS

Exploits0References6

RedHat Linux•added 2020/12/02 2:3 p.m.•2 views

postgresql: Multiple features escape "security restricted operation" sandbox

8.8CVSS7.4AI score0.23757EPSS

Exploits0References6

OSV•added 2020/11/16 1:15 a.m.•0 views

ALPINE-CVE-2020-25695