Test ID:	1.3.6.1.4.1.25623.1.0.813754
Category:	Databases
Title:	PostgreSQL Multiple Vulnerabilities (Aug 2018) - Linux
Summary:	PostgreSQL is prone to multiple vulnerabilities.
Description:	Summary: PostgreSQL is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to a missing authorization on certain statements involved with 'INSERT ... ON CONFLICT DO UPDATE'. Vulnerability Impact: Successful exploitation will allow an attacker to read arbitrary bytes of server memory and update other columns which should have been restricted otherwise. Affected Software/OS: PostgreSQL versions before 10.5, 9.6.10 and 9.5.14. Solution: Update to version 10.5 or 9.6.10 or 9.5.14 or later. Please see the references for more information. CVSS Score: 5.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-10925 BugTraq ID: 105052 http://www.securityfocus.com/bid/105052 Debian Security Information: DSA-4269 (Google Search) https://www.debian.org/security/2018/dsa-4269 https://security.gentoo.org/glsa/201810-08 RedHat Security Advisories: RHSA-2018:2511 https://access.redhat.com/errata/RHSA-2018:2511 RedHat Security Advisories: RHSA-2018:2565 https://access.redhat.com/errata/RHSA-2018:2565 RedHat Security Advisories: RHSA-2018:2566 https://access.redhat.com/errata/RHSA-2018:2566 RedHat Security Advisories: RHSA-2018:3816 https://access.redhat.com/errata/RHSA-2018:3816 http://www.securitytracker.com/id/1041446 SuSE Security Announcement: openSUSE-SU-2020:1227 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html https://usn.ubuntu.com/3744-1/
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.