| Max CVSS | 4.6 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-14350 | 4.4 |
It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the insta
|
24-01-2023 - 02:38 | 24-08-2020 - 13:15 | |
| CVE-2020-14349 | 4.6 |
It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in an attack similar to CVE-2018-1058, in order to exe
|
24-01-2023 - 02:22 | 24-08-2020 - 13:15 | |
| CVE-2020-1720 | 3.5 |
A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION", where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function, triggers, et
|
17-08-2020 - 19:15 | 17-03-2020 - 16:15 |