Lucene search
PRIOn knowledge basePRION:CVE-2018-1058HistoryMar 02, 2018 - 3:29 p.m.
Design/Logic Flaw
2018-03-0215:29:00
PRIOn knowledge base
www.prio-n.com
16
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 17.10 | |
| postgresql | ge | 9.3 | |
| postgresql | lt | 9.3.22 | |
| postgresql | ge | 9.4 | |
| postgresql | lt | 9.4.17 | |
| postgresql | ge | 9.5 | |
| postgresql | lt | 9.5.12 | |
| postgresql | ge | 9.6 |
Related
nessus
nessus
Amazon Linux AMI : postgresql93 / postgresql94,postgresql95,postgresql96 (ALAS-2018-990)
2018-04-06 00:00:00
FreeBSD : PostgreSQL vulnerabilities (e3eeda2e-1d67-11e8-a2ec-6cc21735f730)
2018-03-02 00:00:00
SUSE SLES11 Security Update : postgresql94 (SUSE-SU-2018:0755-1)
2018-03-22 00:00:00
archlinux
archlinux
[ASA-201803-9] postgresql: privilege escalation
2018-03-11 00:00:00
altlinux
altlinux
veracode
veracode
Arbitrary Code Execution
2019-05-16 03:23:17
cvelist
cvelist
CVE-2018-1058
2018-03-01 00:00:00
CVE-2020-14349
2020-08-24 12:32:13
nvd
nvd
CVE-2018-1058
2018-03-02 15:29:00
CVE-2020-14349
2020-08-24 13:15:10
cve
cve
CVE-2018-1058
2018-03-02 15:29:00
CVE-2020-14349
2020-08-24 13:15:10
redhatcve
redhatcve
CVE-2018-1058
2019-11-01 10:02:40
CVE-2020-14349
2020-08-13 12:43:35
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:0755-1)
2021-06-09 00:00:00
PostgreSQL RCE Vulnerability (Feb 2018) - Linux
2018-03-09 00:00:00
PostgreSQL RCE Vulnerability (Feb 2018) - Windows
2018-03-09 00:00:00
postgresql
postgresql
Vulnerability in client (CVE-2018-1058)
2018-03-02 15:29:00
kaspersky
kaspersky
KLA11202 PE vulnerabilities in PostgreSQL
2018-01-03 00:00:00
osv
osv
CVE-2018-1058
2018-03-02 15:29:00
BIT-postgresql-2020-14349
2024-03-06 11:06:51
CVE-2020-14349
2020-08-24 13:15:10
ubuntu
ubuntu
PostgreSQL vulnerability
2018-03-06 00:00:00
photon
photon
alpinelinux
alpinelinux
CVE-2018-1058
2018-03-02 15:29:00
CVE-2020-14349
2020-08-24 13:15:10
freebsd
freebsd
PostgreSQL vulnerabilities
2018-03-01 00:00:00
amazon
amazon
Medium: postgresql93, postgresql94, postgresql95, postgresql96
2018-04-05 16:55:00
ubuntucve
ubuntucve
CVE-2018-1058
2018-02-28 00:00:00
CVE-2020-14349
2020-08-17 00:00:00
debiancve
debiancve
CVE-2018-1058
2018-03-02 15:29:00
CVE-2020-14349
2020-08-24 13:15:10
f5
f5
K000137875 : PostGreSQL vulnerability CVE-2018-1058
2023-12-12 00:00:00
prion
prion
Sql injection
2020-08-24 13:15:00
ibm
ibm
mageia
mageia
Updated postgresql packages fix security vulnerabilities
2020-09-06 23:33:09
Updated postgresql9.4|6 packages fix security vulnerabilities
2018-11-16 01:04:32
redhat
redhat
(RHSA-2018:3816) Important: CloudForms 4.6.6 security, bug fix and enhancement update
2018-12-13 15:02:54
(RHSA-2018:2511) Important: rh-postgresql95-postgresql security update
2018-08-20 10:27:16
(RHSA-2018:2566) Important: rh-postgresql96-postgresql security update
2018-08-27 07:54:53