Описание
aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows elevation to superuser inside PostgreSQL databases during a migration from an untrusted source server. The vulnerability stems from psql executing commands embedded in a dump from the source server. This vulnerability is fixed in 1.0.7.
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.7 (исключая)
cpe:2.3:a:aiven:aiven-db-migrate:*:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00054
Низкий
9.1 Critical
CVSS3
7.2 High
CVSS3
Дефекты
CWE-77
EPSS
Процентиль: 17%
0.00054
Низкий
9.1 Critical
CVSS3
7.2 High
CVSS3
Дефекты
CWE-77