Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/04/16 9:17 p.m.4 views

CVE-2026-34164 Valtimo: Sensitive data exposure through inbox message logging in InboxHandlingService

Valtimo is an open-source business process automation platform. In versions 13.0.0 through 13.21.0, the InboxHandlingService logs the full content of every incoming inbox message at INFO level. Inbox messages can contain highly sensitive information including personal data PII, citizen identifier...

4.9CVSS5.7AI score0.00366EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24809

Malicious code in bioql PyPI...

8.8CVSS7.5AI score0.00385EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/08/27 12:0 p.m.3 views

Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.22: CVE-2025-8713: optimizer statistics can expose sampled data within a view, partition, or child table bsc1248120. CVE-2025-8714: untrusted data inclusion in pgdump lets superuser of origin server execute arbitrary code in...

8.8CVSS7.9AI score0.00709EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

openSUSE 15: postgresql13 / postgresql13-contrib / postgresql13-devel / etc (SUSE-SU-2025:02842-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02842-1 advisory. Upgrade to 13.22: - CVE-2025-8713: optimizer statistics can expose sampled data within a view, partition, or child table bsc1248120. - CVE-2025-8714...

8.8CVSS7.4AI score0.00709EPSS
Exploits1References10
SUSE Linux
SUSE Linux
added 2025/08/18 12:33 p.m.6 views

Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.22: CVE-2025-8713: optimizer statistics can expose sampled data within a view, partition, or child table bsc1248120. CVE-2025-8714: untrusted data inclusion in pgdump lets superuser of origin server execute arbitrary code in...

8.8CVSS8.2AI score0.00709EPSS
Exploits1References12
Cvelist
Cvelist
added 2025/08/14 1:0 p.m.17 views

CVE-2025-8715 PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server

Improper neutralization of newlines in pgdump in PostgreSQL allows a user of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands inside a purpose-crafted object name. The same attacks...

8.8CVSS0.00385EPSS
Exploits0References1
Rows per page
Query Builder