5.1 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
75.1%
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before
0.62.0, when a non-Latin locale Postgres database is used, allows remote
attackers to execute arbitrary SQL commands via query parameters containing
apostrophes.