WEB APPLICATION VULNERABILITIES Standard & Premium

PostgreSQL Other Vulnerability (CVE-2015-3165)

Description

Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.

Remediation

References

Related Vulnerabilities

Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-33194)

Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3)

MySQL CVE-2022-21279 Vulnerability (CVE-2022-21279)

WordPress Plugin wp-mpdf Cross-Site Request Forgery (3.5.1)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6514)

Severity

Medium

Classification

Tags

Missing Update Known Vulnerabilities