exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 22

BDU:2023-00613

больше 5 лет назад

Уязвимость системы управления базами данных PostgreSQL, связанная с неконтролируемым элементом пути поиска, позволяющая нарушителю повысить свои привилегии и выполнить произвольные команды

CVSS3: 7.5

EPSS: Низкий

CVE-2020-14349

около 5 лет назад

It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the user used for replication.

CVSS3: 7.1

EPSS: Низкий

CVE-2020-14349

около 5 лет назад

CVSS3: 7.1

EPSS: Низкий

CVE-2020-14349

около 5 лет назад

CVSS3: 7.1

EPSS: Низкий

CVE-2020-14349

около 5 лет назад

It was found that PostgreSQL versions before 12.4 before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058 in order to execute arbitrary SQL command in the context of the user used for replication.

CVSS3: 7.1

EPSS: Низкий

CVE-2020-14349

около 5 лет назад

It was found that PostgreSQL versions before 12.4, before 11.9 and bef ...

CVSS3: 7.1

EPSS: Низкий

GHSA-2783-h34h-q54q

больше 3 лет назад

CVSS3: 7.1

EPSS: Низкий

openSUSE-SU-2020:1326-1

около 5 лет назад

Security update for postgresql10

EPSS: Низкий

openSUSE-SU-2020:1312-1

около 5 лет назад

Security update for postgresql10

EPSS: Низкий

openSUSE-SU-2020:1244-1

около 5 лет назад

Security update for postgresql12

EPSS: Низкий

openSUSE-SU-2020:1243-1

около 5 лет назад

Security update for postgresql12

EPSS: Низкий

openSUSE-SU-2020:1228-1

около 5 лет назад

Security update for postgresql, postgresql96, postgresql10, postgresql12

EPSS: Низкий

SUSE-SU-2020:2355-1

около 5 лет назад

Security update for postgresql10

EPSS: Низкий

SUSE-SU-2020:2271-1

около 5 лет назад

Security update for postgresql12

EPSS: Низкий

SUSE-SU-2020:2265-1

около 5 лет назад

Security update for postgresql12

EPSS: Низкий

SUSE-SU-2020:2264-1

около 5 лет назад

Security update for postgresql10

EPSS: Низкий

SUSE-SU-2020:3630-1

почти 5 лет назад

Security update for postgresql12

EPSS: Низкий

SUSE-SU-2020:3464-1

почти 5 лет назад

Security update for postgresql10

EPSS: Низкий

RLSA-2020:5620

почти 5 лет назад

Important: postgresql:12 security update

EPSS: Низкий

ELSA-2020-5620-1

почти 5 лет назад

ELSA-2020-5620-1: postgresql:12 security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2023-00613 Уязвимость системы управления базами данных PostgreSQL, связанная с неконтролируемым элементом пути поиска, позволяющая нарушителю повысить свои привилегии и выполнить произвольные команды	CVSS3: 7.5	1% Низкий	больше 5 лет назад
CVE-2020-14349 It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the user used for replication.	CVSS3: 7.1	1% Низкий	около 5 лет назад
CVE-2020-14349 It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the user used for replication.	CVSS3: 7.1	1% Низкий	около 5 лет назад
CVE-2020-14349 It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the user used for replication.	CVSS3: 7.1	1% Низкий	около 5 лет назад
CVE-2020-14349 It was found that PostgreSQL versions before 12.4 before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058 in order to execute arbitrary SQL command in the context of the user used for replication.	CVSS3: 7.1	1% Низкий	около 5 лет назад
CVE-2020-14349 It was found that PostgreSQL versions before 12.4, before 11.9 and bef ...	CVSS3: 7.1	1% Низкий	около 5 лет назад
GHSA-2783-h34h-q54q It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to execute arbitrary SQL command in the context of the user used for replication.	CVSS3: 7.1	1% Низкий	больше 3 лет назад
openSUSE-SU-2020:1326-1 Security update for postgresql10			около 5 лет назад
openSUSE-SU-2020:1312-1 Security update for postgresql10			около 5 лет назад
openSUSE-SU-2020:1244-1 Security update for postgresql12			около 5 лет назад
openSUSE-SU-2020:1243-1 Security update for postgresql12			около 5 лет назад
openSUSE-SU-2020:1228-1 Security update for postgresql, postgresql96, postgresql10, postgresql12			около 5 лет назад
SUSE-SU-2020:2355-1 Security update for postgresql10			около 5 лет назад
SUSE-SU-2020:2271-1 Security update for postgresql12			около 5 лет назад
SUSE-SU-2020:2265-1 Security update for postgresql12			около 5 лет назад
SUSE-SU-2020:2264-1 Security update for postgresql10			около 5 лет назад
SUSE-SU-2020:3630-1 Security update for postgresql12			почти 5 лет назад
SUSE-SU-2020:3464-1 Security update for postgresql10			почти 5 лет назад
RLSA-2020:5620 Important: postgresql:12 security update			почти 5 лет назад
ELSA-2020-5620-1 ELSA-2020-5620-1: postgresql:12 security update (IMPORTANT)			почти 5 лет назад

Уязвимостей на страницу