Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/postgresql-9.4@9.4.1-1

Type deb

Namespace debian

Name postgresql-9.4

Version 9.4.1-1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 9.4.18-0+deb8u1

Latest_non_vulnerable_version 9.4.18-0+deb8u1

Affected_by_vulnerabilities

url VCID-1qap-rdxz-4uer

vulnerability_id VCID-1qap-rdxz-4uer

summary pgcrypto has multiple error messages for decryption with an incorrect key.more details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3167.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3167.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3167

reference_id

reference_type

scores

value	0.01812
scoring_system	epss
scoring_elements	0.82878
published_at	2026-04-21T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82774
published_at	2026-04-01T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82838
published_at	2026-04-13T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82877
published_at	2026-04-16T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82876
published_at	2026-04-18T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.8279
published_at	2026-04-02T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82804
published_at	2026-04-04T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82799
published_at	2026-04-07T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82825
published_at	2026-04-08T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82831
published_at	2026-04-09T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82847
published_at	2026-04-11T12:55:00Z

value	0.01812
scoring_system	epss
scoring_elements	0.82842
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3167

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167

reference_url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/

reference_url

https://www.postgresql.org/support/security/CVE-2015-3167/

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N']

url

https://www.postgresql.org/support/security/CVE-2015-3167/

reference_url	http://ubuntu.com/usn/usn-2621-1
reference_id
reference_type
scores
url	http://ubuntu.com/usn/usn-2621-1

reference_url	http://www.debian.org/security/2015/dsa-3269
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3269

reference_url	http://www.debian.org/security/2015/dsa-3270
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3270

reference_url	http://www.postgresql.org/about/news/1587/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1587/

reference_url	http://www.postgresql.org/docs/9.0/static/release-9-0-20.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.0/static/release-9-0-20.html

reference_url	http://www.postgresql.org/docs/9.1/static/release-9-1-16.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.1/static/release-9-1-16.html

reference_url	http://www.postgresql.org/docs/9.2/static/release-9-2-11.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.2/static/release-9-2-11.html

reference_url	http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.3/static/release-9-3-7.html

reference_url	http://www.postgresql.org/docs/9.4/static/release-9-4-2.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.4/static/release-9-4-2.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1221541
reference_id	1221541
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1221541

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-3167

reference_id

CVE-2015-3167

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2015-3167

reference_url	https://security.gentoo.org/glsa/201507-20
reference_id	GLSA-201507-20
reference_type
scores
url	https://security.gentoo.org/glsa/201507-20

reference_url	https://access.redhat.com/errata/RHSA-2015:1194
reference_id	RHSA-2015:1194
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1194

reference_url	https://access.redhat.com/errata/RHSA-2015:1195
reference_id	RHSA-2015:1195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1195

reference_url	https://access.redhat.com/errata/RHSA-2015:1196
reference_id	RHSA-2015:1196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1196

reference_url	https://usn.ubuntu.com/2621-1/
reference_id	USN-2621-1
reference_type
scores
url	https://usn.ubuntu.com/2621-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2015-3167

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1qap-rdxz-4uer

url VCID-3qrq-rc38-13ep

vulnerability_id VCID-3qrq-rc38-13ep

summary empty password accepted in some authentication methodsmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7546.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7546.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7546

reference_id

reference_type

scores

value	0.33122
scoring_system	epss
scoring_elements	0.96868
published_at	2026-04-01T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96913
published_at	2026-04-21T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96898
published_at	2026-04-12T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96899
published_at	2026-04-13T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96907
published_at	2026-04-16T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96911
published_at	2026-04-18T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96875
published_at	2026-04-02T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.9688
published_at	2026-04-04T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96884
published_at	2026-04-07T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96893
published_at	2026-04-08T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96894
published_at	2026-04-09T12:55:00Z

value	0.33122
scoring_system	epss
scoring_elements	0.96897
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:N

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7546/

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']

url

https://www.postgresql.org/support/security/CVE-2017-7546/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1477184
reference_id	1477184
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1477184

reference_url	https://security.archlinux.org/ASA-201709-2
reference_id	ASA-201709-2
reference_type
scores
url	https://security.archlinux.org/ASA-201709-2

reference_url

https://security.archlinux.org/AVG-381

reference_id

AVG-381

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-381

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:2677
reference_id	RHSA-2017:2677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2677

reference_url	https://access.redhat.com/errata/RHSA-2017:2678
reference_id	RHSA-2017:2678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2678

reference_url	https://access.redhat.com/errata/RHSA-2017:2728
reference_id	RHSA-2017:2728
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2728

reference_url	https://access.redhat.com/errata/RHSA-2017:2860
reference_id	RHSA-2017:2860
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2860

reference_url	https://usn.ubuntu.com/3390-1/
reference_id	USN-3390-1
reference_type
scores
url	https://usn.ubuntu.com/3390-1/

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7546

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3qrq-rc38-13ep

url VCID-45vk-2xsq-cffk

vulnerability_id VCID-45vk-2xsq-cffk

summary libpq ignores PGREQUIRESSL environment variablemore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7485.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7485.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7485

reference_id

reference_type

scores

value	0.0071
scoring_system	epss
scoring_elements	0.72177
published_at	2026-04-01T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.7226
published_at	2026-04-21T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.7222
published_at	2026-04-13T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72263
published_at	2026-04-16T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72273
published_at	2026-04-18T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72182
published_at	2026-04-02T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72203
published_at	2026-04-04T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72178
published_at	2026-04-07T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72215
published_at	2026-04-08T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72227
published_at	2026-04-09T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.7225
published_at	2026-04-11T12:55:00Z

value	0.0071
scoring_system	epss
scoring_elements	0.72234
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7485

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7485/

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']

url

https://www.postgresql.org/support/security/CVE-2017-7485/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1448086
reference_id	1448086
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1448086

reference_url	https://security.archlinux.org/ASA-201705-24
reference_id	ASA-201705-24
reference_type
scores
url	https://security.archlinux.org/ASA-201705-24

reference_url

https://security.archlinux.org/AVG-280

reference_id

AVG-280

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-280

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:1677
reference_id	RHSA-2017:1677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1677

reference_url	https://access.redhat.com/errata/RHSA-2017:1678
reference_id	RHSA-2017:1678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1678

reference_url	https://access.redhat.com/errata/RHSA-2017:1838
reference_id	RHSA-2017:1838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1838

reference_url	https://access.redhat.com/errata/RHSA-2017:2425
reference_id	RHSA-2017:2425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2425

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7485

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-45vk-2xsq-cffk

url VCID-625c-amyd-dybm

vulnerability_id VCID-625c-amyd-dybm

summary Unanticipated errors from the standard library.more details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3166.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3166.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3166

reference_id

reference_type

scores

value	0.02185
scoring_system	epss
scoring_elements	0.84362
published_at	2026-04-09T12:55:00Z

value	0.02185
scoring_system	epss
scoring_elements	0.84299
published_at	2026-04-01T12:55:00Z

value	0.02185
scoring_system	epss
scoring_elements	0.84335
published_at	2026-04-07T12:55:00Z

value	0.02185
scoring_system	epss
scoring_elements	0.84356
published_at	2026-04-08T12:55:00Z

value	0.02185
scoring_system	epss
scoring_elements	0.84312
published_at	2026-04-02T12:55:00Z

value	0.02185
scoring_system	epss
scoring_elements	0.84332
published_at	2026-04-04T12:55:00Z

value	0.02825
scoring_system	epss
scoring_elements	0.86172
published_at	2026-04-11T12:55:00Z

value	0.05386
scoring_system	epss
scoring_elements	0.9013
published_at	2026-04-21T12:55:00Z

value	0.05386
scoring_system	epss
scoring_elements	0.90116
published_at	2026-04-13T12:55:00Z

value	0.05386
scoring_system	epss
scoring_elements	0.90133
published_at	2026-04-16T12:55:00Z

value	0.05386
scoring_system	epss
scoring_elements	0.90134
published_at	2026-04-18T12:55:00Z

value	0.05386
scoring_system	epss
scoring_elements	0.90122
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3166

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167

reference_url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/

reference_url

https://www.postgresql.org/support/security/CVE-2015-3166/

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L']

url

https://www.postgresql.org/support/security/CVE-2015-3166/

reference_url	http://ubuntu.com/usn/usn-2621-1
reference_id
reference_type
scores
url	http://ubuntu.com/usn/usn-2621-1

reference_url	http://www.debian.org/security/2015/dsa-3269
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3269

reference_url	http://www.debian.org/security/2015/dsa-3270
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3270

reference_url	http://www.postgresql.org/about/news/1587/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1587/

reference_url	http://www.postgresql.org/docs/9.0/static/release-9-0-20.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.0/static/release-9-0-20.html

reference_url	http://www.postgresql.org/docs/9.1/static/release-9-1-16.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.1/static/release-9-1-16.html

reference_url	http://www.postgresql.org/docs/9.2/static/release-9-2-11.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.2/static/release-9-2-11.html

reference_url	http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.3/static/release-9-3-7.html

reference_url	http://www.postgresql.org/docs/9.4/static/release-9-4-2.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.4/static/release-9-4-2.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1221539
reference_id	1221539
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1221539

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-3166

reference_id

CVE-2015-3166

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2015-3166

reference_url	https://security.gentoo.org/glsa/201507-20
reference_id	GLSA-201507-20
reference_type
scores
url	https://security.gentoo.org/glsa/201507-20

reference_url	https://access.redhat.com/errata/RHSA-2015:1194
reference_id	RHSA-2015:1194
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1194

reference_url	https://access.redhat.com/errata/RHSA-2015:1195
reference_id	RHSA-2015:1195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1195

reference_url	https://access.redhat.com/errata/RHSA-2015:1196
reference_id	RHSA-2015:1196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1196

reference_url	https://usn.ubuntu.com/2621-1/
reference_id	USN-2621-1
reference_type
scores
url	https://usn.ubuntu.com/2621-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2015-3166

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-625c-amyd-dybm

url VCID-723y-bsbd-6kfd

vulnerability_id VCID-723y-bsbd-6kfd

summary selectivity estimators bypass SELECT privilege checksmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7484.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7484.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7484

reference_id

reference_type

scores

value	0.01111
scoring_system	epss
scoring_elements	0.78171
published_at	2026-04-21T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79623
published_at	2026-04-07T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79608
published_at	2026-04-01T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79664
published_at	2026-04-12T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79656
published_at	2026-04-13T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79685
published_at	2026-04-18T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79614
published_at	2026-04-02T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79637
published_at	2026-04-04T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79651
published_at	2026-04-08T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.79659
published_at	2026-04-09T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.7968
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7484

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7484/

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']

url

https://www.postgresql.org/support/security/CVE-2017-7484/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1448078
reference_id	1448078
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1448078

reference_url	https://security.archlinux.org/ASA-201705-23
reference_id	ASA-201705-23
reference_type
scores
url	https://security.archlinux.org/ASA-201705-23

reference_url

https://security.archlinux.org/AVG-272

reference_id

AVG-272

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-272

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:1677
reference_id	RHSA-2017:1677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1677

reference_url	https://access.redhat.com/errata/RHSA-2017:1678
reference_id	RHSA-2017:1678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1678

reference_url	https://access.redhat.com/errata/RHSA-2017:1838
reference_id	RHSA-2017:1838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1838

reference_url	https://access.redhat.com/errata/RHSA-2017:1983
reference_id	RHSA-2017:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1983

reference_url	https://access.redhat.com/errata/RHSA-2017:2425
reference_id	RHSA-2017:2425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2425

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7484

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-723y-bsbd-6kfd

url VCID-8bu8-zpfv-8bgg

vulnerability_id VCID-8bu8-zpfv-8bgg

summary Exceptional database and role names could enable escalation to superusermore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5424.json

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5424.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5424

reference_id

reference_type

scores

value	0.01674
scoring_system	epss
scoring_elements	0.82076
published_at	2026-04-01T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82184
published_at	2026-04-21T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82181
published_at	2026-04-16T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82182
published_at	2026-04-18T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82088
published_at	2026-04-02T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82109
published_at	2026-04-04T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82105
published_at	2026-04-07T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82132
published_at	2026-04-08T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82139
published_at	2026-04-09T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82158
published_at	2026-04-11T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82149
published_at	2026-04-12T12:55:00Z

value	0.01674
scoring_system	epss
scoring_elements	0.82144
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5424

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5423
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5423

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5424
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5424

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:S/C:C/I:C/A:C

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2016-08-11-security-update-release-1688/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2016-08-11-security-update-release-1688/

reference_url

https://www.postgresql.org/support/security/CVE-2016-5424/

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']

url

https://www.postgresql.org/support/security/CVE-2016-5424/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1364002
reference_id	1364002
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1364002

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://access.redhat.com/errata/RHSA-2016:1781
reference_id	RHSA-2016:1781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1781

reference_url	https://access.redhat.com/errata/RHSA-2016:1820
reference_id	RHSA-2016:1820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1820

reference_url	https://access.redhat.com/errata/RHSA-2016:1821
reference_id	RHSA-2016:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1821

reference_url	https://access.redhat.com/errata/RHSA-2016:2606
reference_id	RHSA-2016:2606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2606

reference_url	https://access.redhat.com/errata/RHSA-2017:2425
reference_id	RHSA-2017:2425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2425

reference_url	https://usn.ubuntu.com/3066-1/
reference_id	USN-3066-1
reference_type
scores
url	https://usn.ubuntu.com/3066-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

purl pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.12-0%252Bdeb8u1~bpo7%252B1

aliases CVE-2016-5424

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8bu8-zpfv-8bgg

url VCID-9b6v-1bt1-dfgy

vulnerability_id VCID-9b6v-1bt1-dfgy

summary Certain nested CASE/WHEN expressions can crash servermore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5423.json

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5423.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5423

reference_id

reference_type

scores

value	0.034
scoring_system	epss
scoring_elements	0.87365
published_at	2026-04-01T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87431
published_at	2026-04-21T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87433
published_at	2026-04-16T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87436
published_at	2026-04-18T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87374
published_at	2026-04-02T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.8739
published_at	2026-04-04T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87389
published_at	2026-04-07T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87408
published_at	2026-04-08T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87415
published_at	2026-04-09T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87428
published_at	2026-04-11T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87423
published_at	2026-04-12T12:55:00Z

value	0.034
scoring_system	epss
scoring_elements	0.87419
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5423

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5423
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5423

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5424
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5424

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2016-08-11-security-update-release-1688/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2016-08-11-security-update-release-1688/

reference_url

https://www.postgresql.org/support/security/CVE-2016-5423/

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']

url

https://www.postgresql.org/support/security/CVE-2016-5423/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1364001
reference_id	1364001
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1364001

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://access.redhat.com/errata/RHSA-2016:1781
reference_id	RHSA-2016:1781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1781

reference_url	https://access.redhat.com/errata/RHSA-2016:1820
reference_id	RHSA-2016:1820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1820

reference_url	https://access.redhat.com/errata/RHSA-2016:1821
reference_id	RHSA-2016:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1821

reference_url	https://access.redhat.com/errata/RHSA-2016:2606
reference_id	RHSA-2016:2606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2606

reference_url	https://access.redhat.com/errata/RHSA-2017:2425
reference_id	RHSA-2017:2425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2425

reference_url	https://usn.ubuntu.com/3066-1/
reference_id	USN-3066-1
reference_type
scores
url	https://usn.ubuntu.com/3066-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

purl pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.12-0%252Bdeb8u1~bpo7%252B1

aliases CVE-2016-5423

risk_score 3.9

exploitability 0.5

weighted_severity 7.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9b6v-1bt1-dfgy

url VCID-csfh-831q-rqfv

vulnerability_id VCID-csfh-831q-rqfv

summary pg_user_mappings view discloses passwords to users lacking server privilegesmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7547.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7547.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7547

reference_id

reference_type

scores

value	0.01109
scoring_system	epss
scoring_elements	0.7807
published_at	2026-04-01T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.7816
published_at	2026-04-16T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78126
published_at	2026-04-13T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.7813
published_at	2026-04-12T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78079
published_at	2026-04-02T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78108
published_at	2026-04-04T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78091
published_at	2026-04-07T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78117
published_at	2026-04-08T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78148
published_at	2026-04-11T12:55:00Z

value	0.01109
scoring_system	epss
scoring_elements	0.78122
published_at	2026-04-09T12:55:00Z

value	0.01444
scoring_system	epss
scoring_elements	0.80778
published_at	2026-04-21T12:55:00Z

value	0.01444
scoring_system	epss
scoring_elements	0.80777
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:P/I:P/A:N

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7547/

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']

url

https://www.postgresql.org/support/security/CVE-2017-7547/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1477185
reference_id	1477185
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1477185

reference_url	https://security.archlinux.org/ASA-201709-2
reference_id	ASA-201709-2
reference_type
scores
url	https://security.archlinux.org/ASA-201709-2

reference_url

https://security.archlinux.org/AVG-381

reference_id

AVG-381

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-381

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:2677
reference_id	RHSA-2017:2677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2677

reference_url	https://access.redhat.com/errata/RHSA-2017:2678
reference_id	RHSA-2017:2678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2678

reference_url	https://access.redhat.com/errata/RHSA-2017:2728
reference_id	RHSA-2017:2728
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2728

reference_url	https://usn.ubuntu.com/3390-1/
reference_id	USN-3390-1
reference_type
scores
url	https://usn.ubuntu.com/3390-1/

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7547

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-csfh-831q-rqfv

url VCID-d362-bmcf-3kdz

vulnerability_id VCID-d362-bmcf-3kdz

summary Memory disclosure in JSON functionsmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15098.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15098.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-15098

reference_id

reference_type

scores

value	0.00864
scoring_system	epss
scoring_elements	0.75049
published_at	2026-04-01T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75128
published_at	2026-04-21T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75092
published_at	2026-04-08T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75103
published_at	2026-04-09T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75125
published_at	2026-04-11T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75104
published_at	2026-04-12T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75094
published_at	2026-04-13T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75132
published_at	2026-04-16T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75139
published_at	2026-04-18T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75052
published_at	2026-04-02T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75082
published_at	2026-04-04T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75058
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-15098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:P

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.debian.org/security/2017/dsa-4027
reference_id
reference_type
scores
url	https://www.debian.org/security/2017/dsa-4027

reference_url	https://www.debian.org/security/2017/dsa-4028
reference_id
reference_type
scores
url	https://www.debian.org/security/2017/dsa-4028

reference_url	https://www.postgresql.org/about/news/1801/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/1801/

reference_url	https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/

reference_url	https://www.postgresql.org/support/security/
reference_id
reference_type
scores
url	https://www.postgresql.org/support/security/

reference_url

https://www.postgresql.org/support/security/CVE-2017-15098/

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']

url

https://www.postgresql.org/support/security/CVE-2017-15098/

reference_url	http://www.securityfocus.com/bid/101781
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/101781

reference_url	http://www.securitytracker.com/id/1039752
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1039752

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1508820
reference_id	1508820
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1508820

reference_url	https://security.archlinux.org/ASA-201711-17
reference_id	ASA-201711-17
reference_type
scores
url	https://security.archlinux.org/ASA-201711-17

reference_url	https://security.archlinux.org/ASA-201711-18
reference_id	ASA-201711-18
reference_type
scores
url	https://security.archlinux.org/ASA-201711-18

reference_url

https://security.archlinux.org/AVG-485

reference_id

AVG-485

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-485

reference_url

https://security.archlinux.org/AVG-486

reference_id

AVG-486

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-486

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.11:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.12:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.13:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.14:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.15:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.16:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.17:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.18:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.19:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.11:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.12:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.13:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.14:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-15098

reference_id

CVE-2017-15098

reference_type

scores

value	5.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:P/I:N/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-15098

reference_url	https://access.redhat.com/errata/RHSA-2018:2511
reference_id	RHSA-2018:2511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2511

reference_url	https://access.redhat.com/errata/RHSA-2018:2566
reference_id	RHSA-2018:2566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2566

reference_url	https://usn.ubuntu.com/3479-1/
reference_id	USN-3479-1
reference_type
scores
url	https://usn.ubuntu.com/3479-1/

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-15098

risk_score 3.6

exploitability 0.5

weighted_severity 7.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d362-bmcf-3kdz

url VCID-esps-vak5-bqcp

vulnerability_id VCID-esps-vak5-bqcp

summary Unchecked JSON input can crash the servermore details

references

reference_url	http://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commit%3Bh=08fa47c4850cea32c3116665975bca219fbf2fe6
reference_id
reference_type
scores
url	http://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commit%3Bh=08fa47c4850cea32c3116665975bca219fbf2fe6

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172316.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172316.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169094.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169094.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00033.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00033.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5289.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5289.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5289

reference_id

reference_type

scores

value	0.09972
scoring_system	epss
scoring_elements	0.93062
published_at	2026-04-21T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93013
published_at	2026-04-01T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93052
published_at	2026-04-16T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93055
published_at	2026-04-18T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93022
published_at	2026-04-02T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93026
published_at	2026-04-04T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93025
published_at	2026-04-07T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93033
published_at	2026-04-08T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93038
published_at	2026-04-09T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93043
published_at	2026-04-11T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.9304
published_at	2026-04-12T12:55:00Z

value	0.09972
scoring_system	epss
scoring_elements	0.93042
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5289

reference_url	https://www.postgresql.org/about/news/2015-10-08-security-update-release-1615/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2015-10-08-security-update-release-1615/

reference_url

https://www.postgresql.org/support/security/CVE-2015-5289/

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H']

url

https://www.postgresql.org/support/security/CVE-2015-5289/

reference_url	http://www.debian.org/security/2015/dsa-3374
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3374

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

reference_url	http://www.postgresql.org/about/news/1615/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1615/

reference_url	http://www.postgresql.org/docs/9.3/static/release-9-3-10.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.3/static/release-9-3-10.html

reference_url	http://www.postgresql.org/docs/9.4/static/release-9-4-5.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.4/static/release-9-4-5.html

reference_url	http://www.securityfocus.com/bid/77048
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/77048

reference_url	http://www.securitytracker.com/id/1033775
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033775

reference_url	http://www.ubuntu.com/usn/USN-2772-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2772-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1270312
reference_id	1270312
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1270312

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5289

reference_id

CVE-2015-5289

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5289

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://access.redhat.com/errata/RHSA-2015:2077
reference_id	RHSA-2015:2077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2077

reference_url	https://access.redhat.com/errata/RHSA-2015:2078
reference_id	RHSA-2015:2078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2078

reference_url	https://access.redhat.com/errata/RHSA-2015:2083
reference_id	RHSA-2015:2083
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2083

reference_url	https://usn.ubuntu.com/2772-1/
reference_id	USN-2772-1
reference_type
scores
url	https://usn.ubuntu.com/2772-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2015-5289

risk_score 2.9

exploitability 0.5

weighted_severity 5.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-esps-vak5-bqcp

url VCID-fd5z-bj21-m3a5

vulnerability_id VCID-fd5z-bj21-m3a5

summary Memory leak in crypt() function.more details

references

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172316.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172316.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169094.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169094.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00033.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00033.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00040.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-11/msg00040.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5288.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5288.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5288

reference_id

reference_type

scores

value	0.08949
scoring_system	epss
scoring_elements	0.92611
published_at	2026-04-21T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92558
published_at	2026-04-01T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92596
published_at	2026-04-12T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92608
published_at	2026-04-16T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92607
published_at	2026-04-18T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92564
published_at	2026-04-02T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92571
published_at	2026-04-04T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92573
published_at	2026-04-07T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92585
published_at	2026-04-08T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92589
published_at	2026-04-09T12:55:00Z

value	0.08949
scoring_system	epss
scoring_elements	0.92595
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-95-beta-1-released-1614/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-95-beta-1-released-1614/

reference_url

https://www.postgresql.org/support/security/CVE-2015-5288/

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N']

url

https://www.postgresql.org/support/security/CVE-2015-5288/

reference_url	http://www.debian.org/security/2015/dsa-3374
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3374

reference_url	http://www.debian.org/security/2016/dsa-3475
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3475

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

reference_url	http://www.postgresql.org/about/news/1615/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1615/

reference_url	http://www.postgresql.org/docs/9.0/static/release-9-0-23.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.0/static/release-9-0-23.html

reference_url	http://www.postgresql.org/docs/9.1/static/release-9-1-19.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.1/static/release-9-1-19.html

reference_url	http://www.postgresql.org/docs/9.2/static/release-9-2-14.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.2/static/release-9-2-14.html

reference_url	http://www.postgresql.org/docs/9.3/static/release-9-3-10.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.3/static/release-9-3-10.html

reference_url	http://www.postgresql.org/docs/9.4/static/release-9-4-5.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/9.4/static/release-9-4-5.html

reference_url	http://www.securityfocus.com/bid/77049
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/77049

reference_url	http://www.securitytracker.com/id/1033775
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033775

reference_url	http://www.ubuntu.com/usn/USN-2772-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2772-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1270306
reference_id	1270306
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1270306

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.11:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.12:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.13:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.14:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.15:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.16:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.17:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.18:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.1.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.3.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.0:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5288

reference_id

CVE-2015-5288

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5288

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://access.redhat.com/errata/RHSA-2015:2077
reference_id	RHSA-2015:2077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2077

reference_url	https://access.redhat.com/errata/RHSA-2015:2078
reference_id	RHSA-2015:2078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2078

reference_url	https://access.redhat.com/errata/RHSA-2015:2081
reference_id	RHSA-2015:2081
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2081

reference_url	https://access.redhat.com/errata/RHSA-2015:2083
reference_id	RHSA-2015:2083
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2083

reference_url	https://usn.ubuntu.com/2772-1/
reference_id	USN-2772-1
reference_type
scores
url	https://usn.ubuntu.com/2772-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2015-5288

risk_score 2.9

exploitability 0.5

weighted_severity 5.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fd5z-bj21-m3a5

url VCID-h58p-g575-bkg6

vulnerability_id VCID-h58p-g575-bkg6

summary

Multiple vulnerabilities have been found in PostgreSQL, the worst
    of which could result in execution of arbitrary code or privilege
    escalation.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0766

reference_id

reference_type

scores

value	0.00372
scoring_system	epss
scoring_elements	0.59026
published_at	2026-04-18T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58988
published_at	2026-04-13T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.59022
published_at	2026-04-16T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58884
published_at	2026-04-01T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58959
published_at	2026-04-02T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58981
published_at	2026-04-04T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58947
published_at	2026-04-07T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.58999
published_at	2026-04-08T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.59006
published_at	2026-04-21T12:55:00Z

value	0.00372
scoring_system	epss
scoring_elements	0.59025
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0766

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	http://www.debian.org/security/2016/dsa-3475
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3475

reference_url	http://www.debian.org/security/2016/dsa-3476
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3476

reference_url	http://www.postgresql.org/about/news/1644/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1644/

reference_url	http://www.postgresql.org/docs/current/static/release-9-1-20.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-1-20.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-2-15.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-2-15.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-3-11.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-3-11.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-4-6.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-4-6.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-5-1.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-5-1.html

reference_url	http://www.securityfocus.com/bid/83184
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/83184

reference_url	http://www.securitytracker.com/id/1035005
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1035005

reference_url	http://www.ubuntu.com/usn/USN-2894-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2894-1

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-0766

reference_id

CVE-2016-0766

reference_type

scores

value	9.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:C/I:C/A:C

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-0766

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://usn.ubuntu.com/2894-1/
reference_id	USN-2894-1
reference_type
scores
url	https://usn.ubuntu.com/2894-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2016-0766

risk_score 4.0

exploitability 0.5

weighted_severity 8.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h58p-g575-bkg6

url VCID-mebz-9qb7-5bd2

vulnerability_id VCID-mebz-9qb7-5bd2

summary Double "free" after authentication timeoutmore details

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3165.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3165.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3165

reference_id

reference_type

scores

value	0.0971
scoring_system	epss
scoring_elements	0.92952
published_at	2026-04-21T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92906
published_at	2026-04-01T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92914
published_at	2026-04-02T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92918
published_at	2026-04-04T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92917
published_at	2026-04-07T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92925
published_at	2026-04-08T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.9293
published_at	2026-04-09T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92935
published_at	2026-04-11T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92933
published_at	2026-04-12T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92934
published_at	2026-04-13T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92944
published_at	2026-04-16T12:55:00Z

value	0.0971
scoring_system	epss
scoring_elements	0.92946
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167

reference_url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-942-937-9211-9116-and-9020-released-1587/

reference_url

https://www.postgresql.org/support/security/CVE-2015-3165/

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H']

url

https://www.postgresql.org/support/security/CVE-2015-3165/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1221537
reference_id	1221537
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1221537

reference_url	https://security.gentoo.org/glsa/201507-20
reference_id	GLSA-201507-20
reference_type
scores
url	https://security.gentoo.org/glsa/201507-20

reference_url	https://access.redhat.com/errata/RHSA-2015:1194
reference_id	RHSA-2015:1194
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1194

reference_url	https://access.redhat.com/errata/RHSA-2015:1195
reference_id	RHSA-2015:1195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1195

reference_url	https://access.redhat.com/errata/RHSA-2015:1196
reference_id	RHSA-2015:1196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1196

reference_url	https://usn.ubuntu.com/2621-1/
reference_id	USN-2621-1
reference_type
scores
url	https://usn.ubuntu.com/2621-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2015-3165

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mebz-9qb7-5bd2

url VCID-qn5k-y64c-7ffc

vulnerability_id VCID-qn5k-y64c-7ffc

summary pg_user_mappings view discloses foreign server passwordsmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7486.json

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7486.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7486

reference_id

reference_type

scores

value	0.04182
scoring_system	epss
scoring_elements	0.88653
published_at	2026-04-01T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88718
published_at	2026-04-21T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88709
published_at	2026-04-13T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88722
published_at	2026-04-16T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.8872
published_at	2026-04-18T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88662
published_at	2026-04-02T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88679
published_at	2026-04-04T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.8868
published_at	2026-04-07T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88697
published_at	2026-04-08T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88703
published_at	2026-04-09T12:55:00Z

value	0.04182
scoring_system	epss
scoring_elements	0.88715
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7486

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7486/

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']

url

https://www.postgresql.org/support/security/CVE-2017-7486/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1448089
reference_id	1448089
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1448089

reference_url	https://security.archlinux.org/ASA-201705-23
reference_id	ASA-201705-23
reference_type
scores
url	https://security.archlinux.org/ASA-201705-23

reference_url

https://security.archlinux.org/AVG-272

reference_id

AVG-272

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-272

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:1677
reference_id	RHSA-2017:1677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1677

reference_url	https://access.redhat.com/errata/RHSA-2017:1678
reference_id	RHSA-2017:1678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1678

reference_url	https://access.redhat.com/errata/RHSA-2017:1838
reference_id	RHSA-2017:1838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1838

reference_url	https://access.redhat.com/errata/RHSA-2017:1983
reference_id	RHSA-2017:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1983

reference_url	https://access.redhat.com/errata/RHSA-2017:2425
reference_id	RHSA-2017:2425
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2425

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7486

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qn5k-y64c-7ffc

url VCID-t864-ytjh-nyg1

vulnerability_id VCID-t864-ytjh-nyg1

summary Unchecked regex can crash the servermore details

references

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177820.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177820.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177878.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177878.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00049.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00052.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00054.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00056.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00016.html

reference_url	http://rhn.redhat.com/errata/RHSA-2016-1060.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2016-1060.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0773.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0773.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-0773

reference_id

reference_type

scores

value	0.12452
scoring_system	epss
scoring_elements	0.93935
published_at	2026-04-21T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.9387
published_at	2026-04-01T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93907
published_at	2026-04-13T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93908
published_at	2026-04-12T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93929
published_at	2026-04-16T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93934
published_at	2026-04-18T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93879
published_at	2026-04-02T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93888
published_at	2026-04-04T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93891
published_at	2026-04-07T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.939
published_at	2026-04-08T12:55:00Z

value	0.12452
scoring_system	epss
scoring_elements	0.93904
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-0773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0766

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0773

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://kc.mcafee.com/corporate/index?page=content&id=SB10152
reference_id
reference_type
scores
url	https://kc.mcafee.com/corporate/index?page=content&id=SB10152

reference_url	https://puppet.com/security/cve/CVE-2016-0773
reference_id
reference_type
scores
url	https://puppet.com/security/cve/CVE-2016-0773

reference_url	https://www.postgresql.org/about/news/2016-02-11-security-update-release-1644/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/2016-02-11-security-update-release-1644/

reference_url

https://www.postgresql.org/support/security/CVE-2016-0773/

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H']

url

https://www.postgresql.org/support/security/CVE-2016-0773/

reference_url	http://www.debian.org/security/2016/dsa-3475
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3475

reference_url	http://www.debian.org/security/2016/dsa-3476
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3476

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.postgresql.org/about/news/1644/
reference_id
reference_type
scores
url	http://www.postgresql.org/about/news/1644/

reference_url	http://www.postgresql.org/docs/current/static/release-9-1-20.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-1-20.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-2-15.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-2-15.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-3-11.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-3-11.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-4-6.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-4-6.html

reference_url	http://www.postgresql.org/docs/current/static/release-9-5-1.html
reference_id
reference_type
scores
url	http://www.postgresql.org/docs/current/static/release-9-5-1.html

reference_url	http://www.securityfocus.com/bid/83184
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/83184

reference_url	http://www.securitytracker.com/id/1035005
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1035005

reference_url	http://www.ubuntu.com/usn/USN-2894-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2894-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1303832
reference_id	1303832
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1303832

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
reference_id	cpe:2.3:a:postgresql:postgresql::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.14:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.2.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.4.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_id	cpe:2.3:a:postgresql:postgresql:9.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:9.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-0773

reference_id

CVE-2016-0773

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2016-0773

reference_url	https://security.gentoo.org/glsa/201701-33
reference_id	GLSA-201701-33
reference_type
scores
url	https://security.gentoo.org/glsa/201701-33

reference_url	https://access.redhat.com/errata/RHSA-2016:0346
reference_id	RHSA-2016:0346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0346

reference_url	https://access.redhat.com/errata/RHSA-2016:0347
reference_id	RHSA-2016:0347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0347

reference_url	https://access.redhat.com/errata/RHSA-2016:0348
reference_id	RHSA-2016:0348
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0348

reference_url	https://access.redhat.com/errata/RHSA-2016:0349
reference_id	RHSA-2016:0349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0349

reference_url	https://access.redhat.com/errata/RHSA-2016:1060
reference_id	RHSA-2016:1060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1060

reference_url	https://usn.ubuntu.com/2894-1/
reference_id	USN-2894-1
reference_type
scores
url	https://usn.ubuntu.com/2894-1/

fixed_packages

url pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

purl pkg:deb/debian/postgresql-9.4@9.4.7-0%2Bdeb8u1~bpo70%2B2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3qrq-rc38-13ep

vulnerability	VCID-45vk-2xsq-cffk

vulnerability	VCID-723y-bsbd-6kfd

vulnerability	VCID-8bu8-zpfv-8bgg

vulnerability	VCID-9b6v-1bt1-dfgy

vulnerability	VCID-csfh-831q-rqfv

vulnerability	VCID-d362-bmcf-3kdz

vulnerability	VCID-qn5k-y64c-7ffc

vulnerability	VCID-um7d-pzhb-n3c9

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.7-0%252Bdeb8u1~bpo70%252B2

aliases CVE-2016-0773

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t864-ytjh-nyg1

url VCID-um7d-pzhb-n3c9

vulnerability_id VCID-um7d-pzhb-n3c9

summary lo_put() function ignores ACLsmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7548.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7548.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7548

reference_id

reference_type

scores

value	0.00749
scoring_system	epss
scoring_elements	0.73074
published_at	2026-04-01T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.7317
published_at	2026-04-21T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73132
published_at	2026-04-12T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73125
published_at	2026-04-13T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73168
published_at	2026-04-16T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73178
published_at	2026-04-18T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73083
published_at	2026-04-02T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73104
published_at	2026-04-04T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73078
published_at	2026-04-07T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73114
published_at	2026-04-08T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73127
published_at	2026-04-09T12:55:00Z

value	0.00749
scoring_system	epss
scoring_elements	0.73152
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:C/I:C/A:N

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/

reference_url

https://www.postgresql.org/support/security/CVE-2017-7548/

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N']

url

https://www.postgresql.org/support/security/CVE-2017-7548/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1477187
reference_id	1477187
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1477187

reference_url	https://security.archlinux.org/ASA-201709-2
reference_id	ASA-201709-2
reference_type
scores
url	https://security.archlinux.org/ASA-201709-2

reference_url

https://security.archlinux.org/AVG-381

reference_id

AVG-381

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-381

reference_url	https://security.gentoo.org/glsa/201710-06
reference_id	GLSA-201710-06
reference_type
scores
url	https://security.gentoo.org/glsa/201710-06

reference_url	https://access.redhat.com/errata/RHSA-2017:2677
reference_id	RHSA-2017:2677
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2677

reference_url	https://access.redhat.com/errata/RHSA-2017:2678
reference_id	RHSA-2017:2678
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2678

reference_url	https://usn.ubuntu.com/3390-1/
reference_id	USN-3390-1
reference_type
scores
url	https://usn.ubuntu.com/3390-1/

fixed_packages

url	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
purl	pkg:deb/debian/postgresql-9.4@9.4.18-0%2Bdeb8u1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.18-0%252Bdeb8u1

aliases CVE-2017-7548

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-um7d-pzhb-n3c9

Fixing_vulnerabilities

Risk_score 4.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-9.4@9.4.1-1

Package Instance