3 matches found
CVE-2020-13692
CVE-2020-13692 affects the PostgreSQL JDBC Driver (PgJDBC) prior to v42.2.13, where an XML External Entity (XXE) weakness exists in the driver (libpgjava). Exploitation could lead to data exposure and potential impact on availability as summarized in the connected advisories. The Debian/AlmaLinux...
CVE-2026-42198
CVE-2026-42198 affects the pgjdbc PostgreSQL JDBC driver in versions 42.2.0 through before 42.7.11. The vulnerability is a client-side denial of service during SCRAM-SHA-256 authentication: a malicious server can force SCRAM with an extremely high iteration count, causing the client to spend unbo...
CVE-2012-1618
CVE-2012-1618 affects the PostgreSQL JDBC Driver prior to 8.2 when used with servers enabling standard_conforming_strings, allowing remote SQL injection via unescaped JDBC parameters. The issue is documented across multiple sources; exploitation details are not provided in the connected documents...