exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 25

CVE-2025-8714

18 дней назад

Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.

CVSS3: 8.8

EPSS: Низкий

CVE-2025-8714

18 дней назад

CVSS3: 8.8

EPSS: Низкий

CVE-2025-8714

18 дней назад

CVSS3: 8.8

EPSS: Низкий

CVE-2025-8714

18 дней назад

Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious s ...

CVSS3: 8.8

EPSS: Низкий

GHSA-6m5q-cc57-2mj6

18 дней назад

CVSS3: 8.8

EPSS: Низкий

BDU:2025-09829

20 дней назад

Уязвимость утилиты pg_dump системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольный код

CVSS3: 8.8

EPSS: Низкий

ELSA-2025-14899

4 дня назад

ELSA-2025-14899: postgresql:16 security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-14878

4 дня назад

ELSA-2025-14878: postgresql security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-14827

5 дней назад

ELSA-2025-14827: postgresql:16 security update (IMPORTANT)

EPSS: Низкий

ELSA-2025-14826

5 дней назад

ELSA-2025-14826: postgresql16 security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2025:03031-1

3 дня назад

Security update for postgresql14

EPSS: Низкий

SUSE-SU-2025:03030-1

3 дня назад

Security update for postgresql15

EPSS: Низкий

SUSE-SU-2025:03020-1

3 дня назад

Security update for postgresql14

EPSS: Низкий

SUSE-SU-2025:03019-1

3 дня назад

Security update for postgresql14

EPSS: Низкий

SUSE-SU-2025:03018-1

3 дня назад

Security update for postgresql15

EPSS: Низкий

SUSE-SU-2025:03005-1

5 дней назад

Security update for postgresql16

EPSS: Низкий

SUSE-SU-2025:03004-1

5 дней назад

Security update for postgresql15

EPSS: Низкий

SUSE-SU-2025:03003-1

5 дней назад

Security update for postgresql13

EPSS: Низкий

SUSE-SU-2025:02995-1

5 дней назад

Security update for postgresql17

EPSS: Низкий

SUSE-SU-2025:02994-1

5 дней назад

Security update for postgresql13

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-8714 Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.	CVSS3: 8.8	0% Низкий	18 дней назад
CVE-2025-8714 Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.	CVSS3: 8.8	0% Низкий	18 дней назад
CVE-2025-8714 Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.	CVSS3: 8.8	0% Низкий	18 дней назад
CVE-2025-8714 Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious s ...	CVSS3: 8.8	0% Низкий	18 дней назад
GHSA-6m5q-cc57-2mj6 Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands. pg_dumpall is also affected. pg_restore is affected when used to generate a plain-format dump. This is similar to MySQL CVE-2024-21096. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.	CVSS3: 8.8	0% Низкий	18 дней назад
BDU:2025-09829 Уязвимость утилиты pg_dump системы управления базами данных PostgreSQL, позволяющая нарушителю выполнить произвольный код	CVSS3: 8.8	0% Низкий	20 дней назад
ELSA-2025-14899 ELSA-2025-14899: postgresql:16 security update (IMPORTANT)			4 дня назад
ELSA-2025-14878 ELSA-2025-14878: postgresql security update (IMPORTANT)			4 дня назад
ELSA-2025-14827 ELSA-2025-14827: postgresql:16 security update (IMPORTANT)			5 дней назад
ELSA-2025-14826 ELSA-2025-14826: postgresql16 security update (IMPORTANT)			5 дней назад
SUSE-SU-2025:03031-1 Security update for postgresql14			3 дня назад
SUSE-SU-2025:03030-1 Security update for postgresql15			3 дня назад
SUSE-SU-2025:03020-1 Security update for postgresql14			3 дня назад
SUSE-SU-2025:03019-1 Security update for postgresql14			3 дня назад
SUSE-SU-2025:03018-1 Security update for postgresql15			3 дня назад
SUSE-SU-2025:03005-1 Security update for postgresql16			5 дней назад
SUSE-SU-2025:03004-1 Security update for postgresql15			5 дней назад
SUSE-SU-2025:03003-1 Security update for postgresql13			5 дней назад
SUSE-SU-2025:02995-1 Security update for postgresql17			5 дней назад
SUSE-SU-2025:02994-1 Security update for postgresql13			5 дней назад

Уязвимостей на страницу