Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2025-12817

Опубликовано: 14 нояб. 2025
Источник: msrc
CVSS3: 3.1
EPSS Низкий

Описание

PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege

EPSS

Процентиль: 6%
0.00035
Низкий

3.1 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-12817

CVSS3: 3.1
ubuntu
7 дней назад

[Check for CREATE privileges on the schema in CREATE STATISTICS]

nvd логотип

CVE-2025-12817

CVSS3: 3.1
nvd
6 дней назад

Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.

debian логотип

CVE-2025-12817

CVSS3: 3.1
debian
6 дней назад

Missing authorization in PostgreSQL CREATE STATISTICS command allows a ...

github логотип

GHSA-99qj-9hw7-85x8

CVSS3: 3.1
github
6 дней назад

Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 are affected.

fstec логотип

BDU:2025-14083

CVSS3: 3.1
fstec
7 дней назад

Уязвимость функции CREATE STATISTICS системы управления базами данных PostgreSQL, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 6%
0.00035
Низкий

3.1 Low

CVSS3