postgresql13 (SUSE:Manager Server 4.2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Manager Server 4.2 package postgresql13, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2023-39417 — CVSS 7.5 (high): IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@…
CVE-2023-2454 — CVSS 7.2 (high): schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed…
CVE-2023-2455 — CVSS 5.4 (medium): Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases…
CVE-2022-41862 — CVSS 3.7 (low): In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport…