Lucene search
PRIOn knowledge basePRION:CVE-2017-7486HistoryMay 12, 2017 - 7:29 p.m.
Design/Logic Flaw
2017-05-1219:29:00
PRIOn knowledge base
www.prio-n.com
8
PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pg_user_mappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| postgresql | eq | 8.4.8 | |
| postgresql | eq | 9.1.22 | |
| postgresql | eq | 9.3.8 | |
| postgresql | eq | 9.0.11 | |
| postgresql | eq | 9.2.1 | |
| postgresql | eq | 9.1.4 | |
| postgresql | eq | 9.5.1 | |
| postgresql | eq | 8.4.4 | |
| postgresql | eq | 8.4.1 | |
| postgresql | eq | 9.0.19 |
References
www.debian.org/security/2017/dsa-3851
www.securityfocus.com/bid/98460
www.securitytracker.com/id/1038476
access.redhat.com/errata/RHSA-2017:1677
access.redhat.com/errata/RHSA-2017:1678
access.redhat.com/errata/RHSA-2017:1838
access.redhat.com/errata/RHSA-2017:1983
access.redhat.com/errata/RHSA-2017:2425
security.gentoo.org/glsa/201710-06
www.postgresql.org/about/news/1746/
Related
alpinelinux
alpinelinux
CVE-2017-7486
2017-05-12 19:29:00
nvd
nvd
CVE-2017-7486
2017-05-12 19:29:00
veracode
veracode
Information Disclosure
2019-05-02 06:30:24
osv
osv
CVE-2017-7486
2017-05-12 19:29:00
postgresql-9.4 - security update
2017-05-12 00:00:00
postgresql-9.1 - security update
2017-08-10 00:00:00
redhatcve
redhatcve
CVE-2017-7486
2017-05-11 14:51:47
postgresql
postgresql
Vulnerability in core server (CVE-2017-7486)
2017-05-12 19:29:00
cve
cve
CVE-2017-7486
2017-05-12 19:29:00
ubuntucve
ubuntucve
CVE-2017-7486
2017-05-12 00:00:00
debiancve
debiancve
CVE-2017-7486
2017-05-12 19:29:00
cvelist
cvelist
CVE-2017-7486
2017-05-12 19:00:00
nessus
nessus
EulerOS 2.0 SP1 : posrgresql (EulerOS-SA-2017-1215)
2017-09-11 00:00:00
Scientific Linux Security Update : postgresql on SL7.x x86_64 (20170801)
2017-08-22 00:00:00
CentOS 7 : postgresql (CESA-2017:1983)
2017-08-25 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in PostgreSQL affect PowerKVM
2018-06-18 01:38:04
redhat
redhat
(RHSA-2017:1983) Moderate: postgresql security and enhancement update
2017-08-01 05:56:26
(RHSA-2017:1838) Moderate: rh-postgresql95-postgresql security update
2017-07-31 15:40:29
(RHSA-2017:1677) Moderate: rh-postgresql95-postgresql security update
2017-07-05 05:07:10
oraclelinux
oraclelinux
postgresql security and enhancement update
2017-08-07 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for posrgresql (EulerOS-SA-2017-1215)
2020-01-23 00:00:00
archlinux
archlinux
[ASA-201705-23] postgresql: information disclosure
2017-05-30 00:00:00
amazon
amazon
Medium: postgresql92
2017-06-06 16:53:00
Medium: postgresql93, postgresql94, postgresql95
2017-06-06 16:53:00
centos
centos
postgresql security update
2017-08-24 01:40:39
debian
debian
[SECURITY] [DSA 3851-1] postgresql-9.4 security update
2017-05-12 21:03:07
[SECURITY] [DLA 1051-1] postgresql-9.1 security update
2017-08-10 23:35:39
cloudfoundry
cloudfoundry
CVE-2017-7484, 7485, 7486: PostgreSQL vulnerabilities | Cloud Foundry
2017-05-24 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: postgresql-9.6.3-1.fc26
2017-05-16 00:58:01
[SECURITY] Fedora 26 Update: mingw-postgresql-9.6.3-1.fc26
2017-06-09 19:40:39
mageia
mageia
Updated postgresql9.4 packages fix security vulnerabilities
2017-07-30 18:58:51
kaspersky
kaspersky
KLA11014 Mupltiple vulnerabilities in PostgreSQL
2017-05-11 00:00:00
freebsd
freebsd
PostgreSQL vulnerabilities
2017-05-11 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2017-10-08 00:00:00