Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
postgresql postgresql 9.0.1 vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2020-13551
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM ...
Advantech Webaccess\\/scada 9.0.1
411
VMScore
CVE-2014-0067
The "make check" command for the test suites in PostgreSQL 9.3.3 and previous versions does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging a...
Apple Mac Os X 10.10.4
Apple Mac Os X Server 5.0.3
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.16
Postgresql Postgresql 8.4.1
Postgresql Postgresql 9.3.2
Postgresql Postgresql 9.1.11
Postgresql Postgresql 9.1.10
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.1
892
VMScore
CVE-2013-1902
PostgreSQL, 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 generates insecure temporary files with predictable filenames, which has unspecified impact and attack vectors related to "graphical installers for...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.9
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
730
VMScore
CVE-2013-1899
Argument injection vulnerability in PostgreSQL 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, and 9.0.x prior to 9.0.13 allows remote malicious users to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute ar...
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.0.8
Postgresql Postgresql 9.0.7
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.11
Postgresql Postgresql 9.0.10
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.9
Postgresql Postgresql 9.0.4
2 Metasploit modules
1 Article
892
VMScore
CVE-2013-1903
PostgreSQL, possibly 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X," which has unspecifie...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
605
VMScore
CVE-2013-0255
PostgreSQL 9.2.x prior to 9.2.3, 9.1.x prior to 9.1.8, 9.0.x prior to 9.0.12, 8.4.x prior to 8.4.16, and 8.3.x prior to 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote au...
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.3.20
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.21
Postgresql Postgresql 8.3.22
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.19
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.13
438
VMScore
CVE-2012-3488
The libxslt support in contrib/xml2 in PostgreSQL 8.3 prior to 8.3.20, 8.4 prior to 8.4.13, 9.0 prior to 9.0.9, and 9.1 prior to 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or tri...
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.1
Postgresql Postgresql 8.4.12
Postgresql Postgresql 8.4.6
Postgresql Postgresql 8.4.10
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4.7
Postgresql Postgresql 8.4.5
Postgresql Postgresql 8.4.1
Postgresql Postgresql 8.4.11
Postgresql Postgresql 8.4
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.8
Postgresql Postgresql 8.4.9
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.3.13
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
356
VMScore
CVE-2012-2655
PostgreSQL 8.3.x prior to 8.3.19, 8.4.x prior to 8.4.12, 9.0.x prior to 9.0.8, and 9.1.x prior to 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language's call hand...
Postgresql Postgresql 8.3.13
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4
580
VMScore
CVE-2012-0866
CREATE TRIGGER in PostgreSQL 8.3.x prior to 8.3.18, 8.4.x prior to 8.4.11, 9.0.x prior to 9.0.7, and 9.1.x prior to 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY DEFINER, which allows remote authenticated users to execute otherwise res...
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.13
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.5
Postgresql Postgresql 8.4.1
385
VMScore
CVE-2012-0867
PostgreSQL 8.4.x prior to 8.4.11, 9.0.x prior to 9.0.7, and 9.1.x prior to 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote malicious users to spoof connections when the host name is exactly 32 characters.
Opensuse Project Opensuse 12.2
Postgresql Postgresql 8.4
Postgresql Postgresql 8.4.10
Postgresql Postgresql 8.4.8
Postgresql Postgresql 8.4.9
Postgresql Postgresql 8.4.2
Postgresql Postgresql 8.4.1
Postgresql Postgresql 8.4.3
Postgresql Postgresql 8.4.4
Postgresql Postgresql 8.4.5
Postgresql Postgresql 8.4.6
Postgresql Postgresql 8.4.7
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.4
Postgresql Postgresql 9.0.6
Debian Debian Linux 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Desktop Workstation 5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »