Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2012-1618

Published: 06/10/2012 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Postgresql

Vulnerability Summary

Interaction error in the PostgreSQL JDBC driver prior to 8.2, when used with a PostgreSQL server with the "standard_conforming_strings" option enabled, such as the default configuration of PostgreSQL 9.1, does not properly escape unspecified JDBC statement parameters, which allows remote malicious users to perform SQL injection attacks. NOTE: as of 20120330, it was claimed that the upstream developer planned to dispute this issue, but an official dispute has not been posted as of 20121005.

Vulnerable Product Search on Vulmon Subscribe to Product

postgresql postgresql 9.1

postgresql postgresql jdbc driver 8.1

References

NVD-CWE-Otherhttp://www.osvdb.org/80641http://www.openwall.com/lists/oss-security/2012/03/30/9http://www.openwall.com/lists/oss-security/2012/03/31/1http://www.openwall.com/lists/oss-security/2012/04/04/9http://www.openwall.com/lists/oss-security/2012/03/30/8http://www.openwall.com/lists/oss-security/2012/04/04/5http://www.openwall.com/lists/oss-security/2012/04/02/4http://lists.opensuse.org/opensuse-security/2012-03/msg00024.htmlhttps://bugzilla.novell.com/show_bug.cgi?id=754273http://archives.neohapsis.com/archives/bugtraq/2012-03/0126.htmlhttp://www.openwall.com/lists/oss-security/2012/04/04/4http://www.openwall.com/lists/oss-security/2012/04/04/11https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook