← volver
CVE-2017-7546

CVE-2017-7546

EPSS 61.6%CWE-287
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password.
Productos afectados
PostgreSQL · postgresql

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://access.redhat.com/errata/RHSA-2017:2677https://access.redhat.com/errata/RHSA-2017:2678https://access.redhat.com/errata/RHSA-2017:2728https://access.redhat.com/errata/RHSA-2017:2860https://security.gentoo.org/glsa/201710-06https://www.postgresql.org/about/news/1772/http://www.debian.org/security/2017/dsa-3935http://www.debian.org/security/2017/dsa-3936http://www.securityfocus.com/bid/100278http://www.securitytracker.com/id/1039142