CVE-2017-7546
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password.
Affected (66)
Products: Postgresql: Postgresql · Debian: Debian Linux
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.2.10 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.3.10 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.4.10 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.5.1 |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.6.1 |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.0 |
References (20)
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.