Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7548

Опубликовано: 16 авг. 2017
Источник: debian
EPSS Низкий

Описание

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
postgresql-9.6fixed9.6.4-1package
postgresql-9.4removedpackage
postgresql-9.1removedpackage
postgresql-9.1not-affectedjessiepackage
postgresql-9.1not-affectedwheezypackage
postgresql-8.4removedpackage
postgresql-8.4not-affectedwheezypackage

Примечания

  • https://www.postgresql.org/about/news/1772/

EPSS

Процентиль: 75%
0.00927
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2017-7548

CVSS3: 7.5
ubuntu
почти 8 лет назад

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

redhat логотип

CVE-2017-7548

CVSS3: 5.4
redhat
почти 8 лет назад

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

nvd логотип

CVE-2017-7548

CVSS3: 7.5
nvd
почти 8 лет назад

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

github логотип

GHSA-mmxj-523q-gvxr

CVSS3: 7.5
github
около 3 лет назад

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

fstec логотип

BDU:2017-02036

fstec
около 8 лет назад

Уязвимость системы управления базами данных PostgreSQL, вызванная недостатками авторизации, позволяющая нарушителю вызвать отказ системы

EPSS

Процентиль: 75%
0.00927
Низкий