postgresql14 (SUSE:Manager Server LTS 4.3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Manager Server LTS 4.3 package postgresql14, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2025-8714 — CVSS 8.8 (high): Untrusted data inclusion in pg_dump in PostgreSQL allows a malicious superuser of the origin server to inject arbitrary code for…
CVE-2025-8715 — CVSS 8.8 (high): Improper neutralization of newlines in pg_dump in PostgreSQL allows a user of the origin server to inject arbitrary code for restore-time…
CVE-2025-12818 — CVSS 5.9 (medium): Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause…
CVE-2025-12817 — CVSS 3.1 (low): Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE…
CVE-2025-8713 — CVSS 3.1 (low): PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a…