Vulnerabilities in the Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pg_amcheck components of the PostgreSQL database management system are related to a maintenance error in one component.
pg_amcheck components of PostgreSQL database management system are related to errors when one user services objects of another.
objects by one user to another. Exploitation of the vulnerability could allow an attacker acting
remotely, execute arbitrary SQL functions under a superuser account

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64postgresql< 12.9-2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	postgresql	< 12.9-2	UNKNOWN

altlinux 12

osv 18

openvas 27

nessus 62

cbl_mariner 2

debian 2

oraclelinux 5

redhat 15

amazon 2

rocky 4

ubuntucve 1

ibm 12

postgresql 1

suse 4

ubuntu 2

alpinelinux 1

cloudfoundry 1

nvd 1

centos 1

mageia 2

prion 1

kaspersky 1

cvelist 1

freebsd 1

broadcom 1

almalinux 2

debiancve 1

redhatcve 1

veracode 1

cve 1

virtuozzo 2

gentoo 1

hp 1

altlinux

Security fix for the ALT Linux 10 package postgresql11 version 11.16-alt1

2022-05-13 00:00:00

Security fix for the ALT Linux 9 package postgresql11 version 11.16-alt0.M90P.1

2022-05-18 00:00:00

Security fix for the ALT Linux 9 package postgresql12 version 12.11-alt0.M90P.1

2022-05-18 00:00:00

osv

Important: postgresql:13 security update

2022-06-01 13:45:22

postgresql-11 - security update

2022-05-12 00:00:00

Important: postgresql:10 security update

2022-05-30 11:39:32

openvas

Ubuntu: Security Advisory (USN-5440-1)

2022-05-25 00:00:00

Mageia: Security Advisory (MGASA-2022-0201)

2022-05-23 00:00:00

SUSE: Security Advisory (SUSE-SU-2022:1894-1)

2022-06-01 00:00:00

nessus

Debian DSA-5135-1 : postgresql-11 - security update

2022-05-13 00:00:00

RHEL 8 : postgresql:12 (RHSA-2022:4856)

2022-06-02 00:00:00

RHEL 8 : postgresql:10 (RHSA-2022:4854)

2022-06-02 00:00:00

cbl_mariner

CVE-2022-1552 affecting package postgresql 12.8-1

2022-10-13 00:40:15

CVE-2022-1552 affecting package postgresql for versions less than 14.5-1

2022-10-05 23:33:47

debian

[SECURITY] [DSA 5135-1] postgresql-11 security update

2022-05-12 19:28:08

[SECURITY] [DSA 5136-1] postgresql-13 security update

2022-05-12 19:28:35

oraclelinux

postgresql:13 security update

2022-06-02 00:00:00

postgresql security update

2022-06-30 00:00:00

postgresql security update

2022-06-22 00:00:00

redhat

(RHSA-2022:4894) Important: postgresql:10 security update

2022-06-02 09:21:25

(RHSA-2022:5162) Important: postgresql security update

2022-06-22 08:54:12

(RHSA-2022:4856) Important: postgresql:12 security update

2022-06-01 13:45:17

amazon

Important: postgresql

2022-09-01 21:09:00

Important: postgresql

2022-09-01 21:09:00

rocky

postgresql:13 security update

2022-06-01 13:45:22

postgresql security update

2022-05-30 07:19:50

postgresql:10 security update

2022-05-30 11:39:32

ubuntucve

CVE-2022-1552

2022-05-12 00:00:00

ibm

Security Bulletin: IBM Connect:Direct Web Services vulnerable to remote security bypass due to PostgreSQL (CVE-2022-1552)

2022-08-24 05:32:42

Security Bulletin: IBM Sterling Connect:Direct for Microsoft Windows is vulnerable to remote SQL execution due to PostgreSQL (CVE-2022-1552)

2022-07-12 08:22:36

Security Bulletin: IBM Security Guardium is affected by a PostgreSQL vulnerability (CVE-2022-1552)

2022-11-08 15:56:24

postgresql

Vulnerability in core server (CVE-2022-1552)

2022-05-12 00:00:00

suse

Security update for postgresql12 (important)

2022-05-31 00:00:00

Security update for postgresql13 (important)

2022-05-31 00:00:00

Security update for postgresql14 (important)

2022-06-01 00:00:00

ubuntu

PostgreSQL vulnerability

2022-05-24 00:00:00

PostgreSQL vulnerability

2022-10-13 00:00:00

alpinelinux

CVE-2022-1552

2022-08-31 16:15:09

cloudfoundry

USN-5440-1: PostgreSQL vulnerability | Cloud Foundry

2022-07-28 00:00:00

nvd

CVE-2022-1552

2022-08-31 16:15:09

centos

postgresql security update

2022-08-02 19:22:33

mageia

Updated postgresql packages fix security vulnerability

2022-05-22 16:36:26

Updated postgresql packages fix security vulnerability

2022-08-29 08:07:41

prion

Design/Logic Flaw

2022-08-31 16:15:00

kaspersky

KLA12537 PE vulnerability in PostgreSQL

2022-05-12 00:00:00

cvelist

CVE-2022-1552

2022-08-31 00:00:00

freebsd

PostgreSQL Server -- execute arbitrary SQL code as DBA user

2022-05-11 00:00:00

broadcom

CVE-2022-1552 : Autovacuum, REINDEX, and others omit "security restricted operation" sandbox

2023-05-19 00:00:00

almalinux

Important: postgresql:10 security update

2022-05-30 11:39:32

Important: postgresql:12 security update

2022-05-31 07:56:56

debiancve

CVE-2022-1552

2022-08-31 16:15:09

redhatcve

CVE-2022-1552

2022-05-13 10:26:11

veracode

SQL Injection

2022-05-16 15:11:30

cve

CVE-2022-1552

2022-08-31 16:15:09

virtuozzo

Virtuozzo Hybrid Infrastructure 5.0 Update 1.3 (5.0.1-57)

2022-05-25 00:00:00

Virtuozzo Hybrid Infrastructure 4.7 Update 1.4 (4.7.1-53)

2022-05-25 00:00:00

gentoo

PostgreSQL: Multiple Vulnerabilities

2022-11-19 00:00:00

HP Device Manager Vulnerability Update (5.0.12)

2024-01-26 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

69.6%

JSON

Related for ROS-20220530-02