Количество 25
Количество 25
BDU:2021-00079
Уязвимость системы управления базами данных PostgreSQL, связанная с ненадежным путем поиска, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
CVE-2020-14350
It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23.
CVE-2020-14350
It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23.
CVE-2020-14350
It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23.
CVE-2020-14350
CVE-2020-14350
It was found that some PostgreSQL extensions did not use search_path s ...
GHSA-6v9v-3f4c-cjgx
Untrusted Search Path in PostgreSQL
openSUSE-SU-2020:1326-1
Security update for postgresql10
openSUSE-SU-2020:1312-1
Security update for postgresql10
openSUSE-SU-2020:1244-1
Security update for postgresql12
openSUSE-SU-2020:1243-1
Security update for postgresql12
openSUSE-SU-2020:1228-1
Security update for postgresql, postgresql96, postgresql10, postgresql12
SUSE-SU-2020:2355-1
Security update for postgresql10
SUSE-SU-2020:2271-1
Security update for postgresql12
SUSE-SU-2020:2265-1
Security update for postgresql12
SUSE-SU-2020:2264-1
Security update for postgresql10
SUSE-SU-2020:3477-1
Security update for postgresql96
SUSE-SU-2020:3630-1
Security update for postgresql12
SUSE-SU-2020:3464-1
Security update for postgresql10
RLSA-2020:5620
Important: postgresql:12 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2021-00079 Уязвимость системы управления базами данных PostgreSQL, связанная с ненадежным путем поиска, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 7.3 | 0% Низкий | почти 5 лет назад |
 | CVE-2020-14350 It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23. | CVSS3: 7.3 | 0% Низкий | почти 5 лет назад |
 | CVE-2020-14350 It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23. | CVSS3: 7.1 | 0% Низкий | почти 5 лет назад |
 | CVE-2020-14350 It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23. | CVSS3: 7.3 | 0% Низкий | почти 5 лет назад |
 | CVSS3: 7.3 | 0% Низкий | почти 5 лет назад | |
| CVE-2020-14350 It was found that some PostgreSQL extensions did not use search_path s ... | CVSS3: 7.3 | 0% Низкий | почти 5 лет назад |
| GHSA-6v9v-3f4c-cjgx Untrusted Search Path in PostgreSQL | CVSS3: 7.3 | 0% Низкий | больше 3 лет назад |
 | openSUSE-SU-2020:1326-1 Security update for postgresql10 | почти 5 лет назад | ||
| openSUSE-SU-2020:1312-1 Security update for postgresql10 | почти 5 лет назад | ||
| openSUSE-SU-2020:1244-1 Security update for postgresql12 | почти 5 лет назад | ||
| openSUSE-SU-2020:1243-1 Security update for postgresql12 | почти 5 лет назад | ||
| openSUSE-SU-2020:1228-1 Security update for postgresql, postgresql96, postgresql10, postgresql12 | почти 5 лет назад | ||
| SUSE-SU-2020:2355-1 Security update for postgresql10 | почти 5 лет назад | ||
| SUSE-SU-2020:2271-1 Security update for postgresql12 | почти 5 лет назад | ||
| SUSE-SU-2020:2265-1 Security update for postgresql12 | почти 5 лет назад | ||
| SUSE-SU-2020:2264-1 Security update for postgresql10 | почти 5 лет назад | ||
| SUSE-SU-2020:3477-1 Security update for postgresql96 | больше 4 лет назад | ||
| SUSE-SU-2020:3630-1 Security update for postgresql12 | больше 4 лет назад | ||
| SUSE-SU-2020:3464-1 Security update for postgresql10 | больше 4 лет назад | ||
 | RLSA-2020:5620 Important: postgresql:12 security update | больше 4 лет назад |
Уязвимостей на страницу