It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access.

OSVersionArchitecturePackageVersionFilename
Debian9allpostgresql-9.6< 9.6.17-0+deb9u1postgresql-9.6_9.6.17-0+deb9u1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	all	postgresql-9.6	< 9.6.17-0+deb9u1	postgresql-9.6_9.6.17-0+deb9u1_all.deb

veracode 1

cvelist 1

postgresql 1

nvd 1

cve 1

nessus 25

redhatcve 1

alpinelinux 1

osv 2

prion 1

ubuntucve 1

ibm 1

redhat 5

oraclelinux 1

openvas 11

archlinux 1

amazon 2

centos 1

mageia 1

debian 1

cloudfoundry 1

fedora 2

kaspersky 1

freebsd 1

gentoo 1

veracode

Information Disclosure

2019-01-15 09:18:19

cvelist

CVE-2017-7484

2017-05-12 19:00:00

postgresql

Vulnerability in core server (CVE-2017-7484)

2017-05-12 19:29:00

nvd

CVE-2017-7484

2017-05-12 19:29:00

cve

CVE-2017-7484

2017-05-12 19:29:00

nessus

Fedora 26 : postgresql (2017-a45fb81029)

2017-07-17 00:00:00

RHEL 7 : postgresql (RHSA-2017:1983)

2017-08-02 00:00:00

Oracle Linux 7 : postgresql (ELSA-2017-1983)

2017-08-09 00:00:00

redhatcve

CVE-2017-7484

2017-05-11 14:51:17

alpinelinux

CVE-2017-7484

2017-05-12 19:29:00

osv

CVE-2017-7484

2017-05-12 19:29:00

postgresql-9.4 - security update

2017-05-12 00:00:00

prion

Design/Logic Flaw

2017-05-12 19:29:00

ubuntucve

CVE-2017-7484

2017-05-12 00:00:00

ibm

Security Bulletin: Vulnerabilities in PostgreSQL affect PowerKVM

2018-06-18 01:38:04

redhat

(RHSA-2017:1983) Moderate: postgresql security and enhancement update

2017-08-01 05:56:26

(RHSA-2017:1838) Moderate: rh-postgresql95-postgresql security update

2017-07-31 15:40:29

(RHSA-2017:1677) Moderate: rh-postgresql95-postgresql security update

2017-07-05 05:07:10

oraclelinux

postgresql security and enhancement update

2017-08-07 00:00:00

openvas

PostgreSQL Multiple Information Disclosure Vulnerabilities (May 2017) - Linux

2017-05-15 00:00:00

PostgreSQL Multiple Information Disclosure Vulnerabilities (May 2017) - Windows

2017-05-15 00:00:00

Huawei EulerOS: Security Advisory for posrgresql (EulerOS-SA-2017-1215)

2020-01-23 00:00:00

archlinux

[ASA-201705-23] postgresql: information disclosure

2017-05-30 00:00:00

amazon

Medium: postgresql92

2017-06-06 16:53:00

Medium: postgresql93, postgresql94, postgresql95

2017-06-06 16:53:00

centos

postgresql security update

2017-08-24 01:40:39

mageia

Updated postgresql9.4 packages fix security vulnerabilities

2017-07-30 18:58:51

debian

[SECURITY] [DSA 3851-1] postgresql-9.4 security update

2017-05-12 21:03:07

cloudfoundry

CVE-2017-7484, 7485, 7486: PostgreSQL vulnerabilities | Cloud Foundry

2017-05-24 00:00:00

fedora

[SECURITY] Fedora 26 Update: postgresql-9.6.3-1.fc26

2017-05-16 00:58:01

[SECURITY] Fedora 26 Update: mingw-postgresql-9.6.3-1.fc26

2017-06-09 19:40:39

kaspersky

KLA11014 Mupltiple vulnerabilities in PostgreSQL

2017-05-11 00:00:00

freebsd

PostgreSQL vulnerabilities

2017-05-11 00:00:00

gentoo

PostgreSQL: Multiple vulnerabilities

2017-10-08 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.005 Low

EPSS

Percentile

75.3%

JSON

Related for DEBIANCVE:CVE-2017-7484