Description

PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password.

Remediation

References

CVE-2017-7546

Related Vulnerabilities

Oracle Database Server CVE-2009-0972 Vulnerability (CVE-2009-0972)

WordPress Plugin Register IPs Unspecified Vulnerability (1.8.0)

SharePoint CVE-2022-41060 Vulnerability (CVE-2022-41060)

MySQL CVE-2016-8287 Vulnerability (CVE-2016-8287)

WordPress Plugin Portfolio Gallery-Photo Gallery Multiple Unspecified Vulnerabilities (2.0.72)

Severity

Critical

Classification

CVE-2017-7546 CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities