PostgreSQL 15 Beta 1

CPE Details

PostgreSQL 15 Beta 1
postgresql
postgresql
15
2022-08-19
17h09 +00:00
2023-08-11
15h40 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:postgresql:postgresql:15:beta1:*:*:*:*:*:*

Informations

Vendor

postgresql

Product

postgresql

Version

15

Update

beta1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-2625 2022-08-17 22h00 +00:00 A vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, the ability to lure or wait for an administrator to create or update an affected extension in that schema, and the ability to lure or wait for a victim to use the object targeted in CREATE OR REPLACE or CREATE IF NOT EXISTS. Given all three prerequisites, this flaw allows an attacker to run arbitrary code as the victim role, which may be a superuser.
8
High
CVE-2010-3781 2010-10-06 18h00 +00:00 The PL/php add-on 1.4 and earlier for PostgreSQL does not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain privileges via crafted script code in a SECURITY DEFINER function, a related issue to CVE-2010-3433.
6
CVE-2009-2943 2009-10-22 16h00 +00:00 The postgresql-ocaml bindings 1.5.4, 1.7.0, and 1.12.1 for PostgreSQL libpq do not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings.
7.5