Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postgresql postgresql 9.5 vulnerabilities and exploits
(subscribe to this query)
7.3
CVSSv3
CVE-2020-10733
The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not have fully-qualified paths. Executables in the directory where the installer loads or the current working directory take precedence over the intended executables. An attacker having perm...
Postgresql Postgresql
8.8
CVSSv3
CVE-2019-10208
A flaw exists in postgresql versions 9.4.x prior to 9.4.24, 9.5.x prior to 9.5.19, 9.6.x prior to 9.6.15, 10.x prior to 10.10 and 11.x prior to 11.5 where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function. An attacker, with EXECUTE permission on ...
Postgresql Postgresql
2.2
CVSSv3
CVE-2019-10209
Postgresql, versions 11.x prior to 11.5, is vulnerable to a memory disclosure in cross-type comparison for hashed subplan.
Postgresql Postgresql
4.3
CVSSv3
CVE-2019-10130
A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common ...
Postgresql Postgresql
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-10129
A vulnerability was found in postgresql versions 11.x before 11.3. Using a purpose-crafted insert to a partitioned table, an attacker can read arbitrary bytes of server memory. In the default configuration, any user can create a partitioned table suitable for this attack. (Exploi...
Postgresql Postgresql
9.1
CVSSv3
CVE-2016-3065
The (1) brin_page_type and (2) brin_metapage_info functions in the pageinspect extension in PostgreSQL prior to 9.5.x prior to 9.5.2 allows malicious users to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of serv...
Postgresql Postgresql 9.5.1
Postgresql Postgresql 9.5
7.5
CVSSv3
CVE-2016-2193
PostgreSQL prior to 9.5.x prior to 9.5.2 does not properly maintain row-security status in cached plans, which might allow malicious users to bypass intended access restrictions by leveraging a session that performs queries as more than one role.
Postgresql Postgresql 9.5.1
Postgresql Postgresql 9.5
8.8
CVSSv3
CVE-2016-0766
PostgreSQL prior to 9.1.20, 9.2.x prior to 9.2.15, 9.3.x prior to 9.3.11, 9.4.x prior to 9.4.6, and 9.5.x prior to 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows malicious users to gain privileges via unspecif...
Postgresql Postgresql 9.5
Postgresql Postgresql
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started