PostgreSQL CVE-2018-1115 Security Bypass Vulnerability
BID:104285
CVE-2018-1115 |Info
PostgreSQL CVE-2018-1115 Security Bypass Vulnerability
| Bugtraq ID: | 104285 |
| Class: | Design Error |
| CVE: |
CVE-2018-1115 |
| Remote: | Yes |
| Local: | No |
| Published: | May 10 2018 12:00AM |
| Updated: | May 10 2018 12:00AM |
| Credit: | Stephen Frost |
| Vulnerable: |
PostgreSQL PostgreSQL 9.6.8 PostgreSQL PostgreSQL 9.6.7 PostgreSQL PostgreSQL 9.6.4 PostgreSQL PostgreSQL 9.6 PostgreSQL PostgreSQL 9.6.6 PostgreSQL PostgreSQL 9.6.3 PostgreSQL PostgreSQL 9.6.2 PostgreSQL PostgreSQL 9.6.1 PostgreSQL PostgreSQL 10.3 PostgreSQL PostgreSQL 10.2 PostgreSQL PostgreSQL 10.1 PostgreSQL PostgreSQL 10.0 |
| Not Vulnerable: |
PostgreSQL PostgreSQL 9.6.9 PostgreSQL PostgreSQL 10.4 |
Discussion
PostgreSQL CVE-2018-1115 Security Bypass Vulnerability
PostgreSQL is prone to a security-bypass vulnerability.
Successfully exploiting this issue will allow attackers to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks.
Versions prior to PostgreSQL 10.4, and 9.6.9 are vulnerable.
PostgreSQL is prone to a security-bypass vulnerability.
Successfully exploiting this issue will allow attackers to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks.
Versions prior to PostgreSQL 10.4, and 9.6.9 are vulnerable.
Solution / Fix
PostgreSQL CVE-2018-1115 Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.