Description

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

Remediation

References

CVE-2017-7548

Related Vulnerabilities

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-14720)

WordPress 4.2.x Arbitrary File Deletion Vulnerability (4.2 - 4.2.20)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-44040)

WordPress Plugin Visitor Traffic Real Time Statistics Security Bypass (2.11)

WordPress Plugin WP No External Links Spam Injection (4.2.2)

Severity

High

Classification

CVE-2017-7548 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities