{"url":"http://public2.vulnerablecode.io/api/packages/87475?format=json","purl":"pkg:generic/postgresql@9.6.0","type":"generic","namespace":"","name":"postgresql","version":"9.6.0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"9.6.3","latest_non_vulnerable_version":"18.4.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6474?format=json","vulnerability_id":"VCID-17as-uup9-zufc","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7548.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7548.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7548","reference_id":"","reference_type":"","scores":[{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.7809","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78059","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78083","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78093","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78072","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01068","scoring_system":"epss","scoring_elements":"0.78086","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7548"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:S/C:C/I:C/A:N"},{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7548/","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7548/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477187","reference_id":"1477187","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477187"},{"reference_url":"https://security.archlinux.org/ASA-201709-2","reference_id":"ASA-201709-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201709-2"},{"reference_url":"https://security.archlinux.org/AVG-381","reference_id":"AVG-381","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-381"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2677","reference_id":"RHSA-2017:2677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2678","reference_id":"RHSA-2017:2678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2678"},{"reference_url":"https://usn.ubuntu.com/3390-1/","reference_id":"USN-3390-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3390-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87569?format=json","purl":"pkg:generic/postgresql@9.6.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.4"}],"aliases":["CVE-2017-7548"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-17as-uup9-zufc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58345?format=json","vulnerability_id":"VCID-1axs-e8x2-3udx","summary":"Certain host connection parameters defeat client-side security defensesmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10915.json","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10915.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10915","reference_id":"","reference_type":"","scores":[{"value":"0.01753","scoring_system":"epss","scoring_elements":"0.82943","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01753","scoring_system":"epss","scoring_elements":"0.82916","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0189","scoring_system":"epss","scoring_elements":"0.83559","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0189","scoring_system":"epss","scoring_elements":"0.83554","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0189","scoring_system":"epss","scoring_elements":"0.83546","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10915"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10915","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10915"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10925","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10925"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-105-9610-9514-9419-9324-and-11-beta-3-released-1878/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-105-9610-9514-9419-9324-and-11-beta-3-released-1878/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2018-10915/","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2018-10915/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1609891","reference_id":"1609891","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1609891"},{"reference_url":"https://security.gentoo.org/glsa/201810-08","reference_id":"GLSA-201810-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201810-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2557","reference_id":"RHSA-2018:2557","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2565","reference_id":"RHSA-2018:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3816","reference_id":"RHSA-2018:3816","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3816"},{"reference_url":"https://usn.ubuntu.com/3744-1/","reference_id":"USN-3744-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3744-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87639?format=json","purl":"pkg:generic/postgresql@9.6.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.10"},{"url":"http://public2.vulnerablecode.io/api/packages/87638?format=json","purl":"pkg:generic/postgresql@10.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.5.0"}],"aliases":["CVE-2018-10915"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1axs-e8x2-3udx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58288?format=json","vulnerability_id":"VCID-2md7-j5ar-8ufp","summary":"ALTER ... DEPENDS ON EXTENSION is missing authorization checks.more details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1720.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1720.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1720","reference_id":"","reference_type":"","scores":[{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57782","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57817","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57843","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57832","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00351","scoring_system":"epss","scoring_elements":"0.57834","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-1720"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1720","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1720"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-122-117-1012-9617-9521-and-9426-released-2011/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-122-117-1012-9617-9521-and-9426-released-2011/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2020-1720/","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2020-1720/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798852","reference_id":"1798852","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1798852"},{"reference_url":"https://security.gentoo.org/glsa/202003-03","reference_id":"GLSA-202003-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0980","reference_id":"RHSA-2020:0980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3669","reference_id":"RHSA-2020:3669","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3669"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4295","reference_id":"RHSA-2020:4295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5112","reference_id":"RHSA-2020:5112","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5112"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5620","reference_id":"RHSA-2020:5620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0163","reference_id":"RHSA-2021:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://usn.ubuntu.com/4282-1/","reference_id":"USN-4282-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4282-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87514?format=json","purl":"pkg:generic/postgresql@9.6.17","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.17"},{"url":"http://public2.vulnerablecode.io/api/packages/87513?format=json","purl":"pkg:generic/postgresql@10.12.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.12.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87512?format=json","purl":"pkg:generic/postgresql@11.7.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87511?format=json","purl":"pkg:generic/postgresql@12.2.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.2.0"}],"aliases":["CVE-2020-1720"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2md7-j5ar-8ufp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6475?format=json","vulnerability_id":"VCID-3v4b-5vnd-f3b9","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7547.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7547.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7547","reference_id":"","reference_type":"","scores":[{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77651","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77617","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77643","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77653","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77631","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77645","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:P/A:N"},{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7547/","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7547/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477185","reference_id":"1477185","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477185"},{"reference_url":"https://security.archlinux.org/ASA-201709-2","reference_id":"ASA-201709-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201709-2"},{"reference_url":"https://security.archlinux.org/AVG-381","reference_id":"AVG-381","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-381"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2677","reference_id":"RHSA-2017:2677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2678","reference_id":"RHSA-2017:2678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2728","reference_id":"RHSA-2017:2728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2728"},{"reference_url":"https://usn.ubuntu.com/3390-1/","reference_id":"USN-3390-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3390-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87569?format=json","purl":"pkg:generic/postgresql@9.6.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.4"}],"aliases":["CVE-2017-7547"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3v4b-5vnd-f3b9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58347?format=json","vulnerability_id":"VCID-6apv-vmjv-ykg8","summary":"INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privilegesmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15099.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15099.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15099","reference_id":"","reference_type":"","scores":[{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.96997","published_at":"2026-06-09T12:55:00Z"},{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.9699","published_at":"2026-06-05T12:55:00Z"},{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.96986","published_at":"2026-06-04T12:55:00Z"},{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.96994","published_at":"2026-06-07T12:55:00Z"},{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.96992","published_at":"2026-06-06T12:55:00Z"},{"value":"0.32989","scoring_system":"epss","scoring_elements":"0.96993","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:L/Au:S/C:P/I:P/A:P"},{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-15099/","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-15099/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1508823","reference_id":"1508823","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1508823"},{"reference_url":"https://security.archlinux.org/ASA-201711-17","reference_id":"ASA-201711-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201711-17"},{"reference_url":"https://security.archlinux.org/ASA-201711-18","reference_id":"ASA-201711-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201711-18"},{"reference_url":"https://security.archlinux.org/AVG-485","reference_id":"AVG-485","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-485"},{"reference_url":"https://security.archlinux.org/AVG-486","reference_id":"AVG-486","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://usn.ubuntu.com/3479-1/","reference_id":"USN-3479-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3479-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87564?format=json","purl":"pkg:generic/postgresql@9.6.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.6"},{"url":"http://public2.vulnerablecode.io/api/packages/87563?format=json","purl":"pkg:generic/postgresql@10.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.1.0"}],"aliases":["CVE-2017-15099"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6apv-vmjv-ykg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58262?format=json","vulnerability_id":"VCID-6cmc-t9fq-qfb3","summary":"libpq processes unencrypted bytes from man-in-the-middlemore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23222.json","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23222.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23222","reference_id":"","reference_type":"","scores":[{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51794","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51829","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51807","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51775","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.5176","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51819","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23222"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23214","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23214"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23222","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23222"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-141-135-129-1114-1019-and-9624-released-2349/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-141-135-129-1114-1019-and-9624-released-2349/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2021-23222/","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2021-23222/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022675","reference_id":"2022675","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022675"},{"reference_url":"https://security.archlinux.org/AVG-2547","reference_id":"AVG-2547","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2547"},{"reference_url":"https://security.gentoo.org/glsa/202211-04","reference_id":"GLSA-202211-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5179","reference_id":"RHSA-2021:5179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5197","reference_id":"RHSA-2021:5197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1891","reference_id":"RHSA-2022:1891","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1891"},{"reference_url":"https://usn.ubuntu.com/5145-1/","reference_id":"USN-5145-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5145-1/"},{"reference_url":"https://usn.ubuntu.com/5765-1/","reference_id":"USN-5765-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5765-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87482?format=json","purl":"pkg:generic/postgresql@9.6.24","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.24"},{"url":"http://public2.vulnerablecode.io/api/packages/87481?format=json","purl":"pkg:generic/postgresql@10.19.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.19.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87480?format=json","purl":"pkg:generic/postgresql@11.14.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.14.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87479?format=json","purl":"pkg:generic/postgresql@12.9.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.9.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87478?format=json","purl":"pkg:generic/postgresql@13.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87382?format=json","purl":"pkg:generic/postgresql@14.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@14.1.0"}],"aliases":["CVE-2021-23222"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6cmc-t9fq-qfb3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5811?format=json","vulnerability_id":"VCID-6fnk-z3wm-eqay","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25694.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25694.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25694","reference_id":"","reference_type":"","scores":[{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.5844","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.58446","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.58438","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.58423","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.58391","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00359","scoring_system":"epss","scoring_elements":"0.58437","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25694"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25694","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25694"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2020-25694/","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2020-25694/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894423","reference_id":"1894423","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894423"},{"reference_url":"https://security.archlinux.org/ASA-202011-14","reference_id":"ASA-202011-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202011-14"},{"reference_url":"https://security.archlinux.org/AVG-1276","reference_id":"AVG-1276","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1276"},{"reference_url":"https://security.gentoo.org/glsa/202012-07","reference_id":"GLSA-202012-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5316","reference_id":"RHSA-2020:5316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5317","reference_id":"RHSA-2020:5317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5401","reference_id":"RHSA-2020:5401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5567","reference_id":"RHSA-2020:5567","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5567"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5620","reference_id":"RHSA-2020:5620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5638","reference_id":"RHSA-2020:5638","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5638"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0057","reference_id":"RHSA-2021:0057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0161","reference_id":"RHSA-2021:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0163","reference_id":"RHSA-2021:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0165","reference_id":"RHSA-2021:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1512","reference_id":"RHSA-2021:1512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1512"},{"reference_url":"https://usn.ubuntu.com/4633-1/","reference_id":"USN-4633-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4633-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87494?format=json","purl":"pkg:generic/postgresql@9.6.20","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.20"},{"url":"http://public2.vulnerablecode.io/api/packages/87493?format=json","purl":"pkg:generic/postgresql@10.15.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.15.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87492?format=json","purl":"pkg:generic/postgresql@11.10.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.10.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87491?format=json","purl":"pkg:generic/postgresql@12.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87490?format=json","purl":"pkg:generic/postgresql@13.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.1.0"}],"aliases":["CVE-2020-25694"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6fnk-z3wm-eqay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6551?format=json","vulnerability_id":"VCID-anbm-p83x-17ha","summary":"man-in-the-middle","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7485.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7485.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7485","reference_id":"","reference_type":"","scores":[{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.78478","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.78484","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.78473","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.7846","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.78448","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01107","scoring_system":"epss","scoring_elements":"0.78475","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7485"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7485/","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7485/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448086","reference_id":"1448086","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448086"},{"reference_url":"https://security.archlinux.org/ASA-201705-24","reference_id":"ASA-201705-24","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201705-24"},{"reference_url":"https://security.archlinux.org/AVG-280","reference_id":"AVG-280","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-280"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1677","reference_id":"RHSA-2017:1677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1678","reference_id":"RHSA-2017:1678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1838","reference_id":"RHSA-2017:1838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2425","reference_id":"RHSA-2017:2425","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2425"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87574?format=json","purl":"pkg:generic/postgresql@9.6.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.3"}],"aliases":["CVE-2017-7485"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-anbm-p83x-17ha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58282?format=json","vulnerability_id":"VCID-dw17-wb8r-67bc","summary":"Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATEmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32028.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32028.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32028","reference_id":"","reference_type":"","scores":[{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.71011","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.71017","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.71","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.70985","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.70968","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00641","scoring_system":"epss","scoring_elements":"0.7101","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32028"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32028","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32028"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2021-32028/","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2021-32028/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956877","reference_id":"1956877","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956877"},{"reference_url":"https://security.archlinux.org/ASA-202106-15","reference_id":"ASA-202106-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-15"},{"reference_url":"https://security.archlinux.org/AVG-1956","reference_id":"AVG-1956","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1956"},{"reference_url":"https://security.gentoo.org/glsa/202211-04","reference_id":"GLSA-202211-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2360","reference_id":"RHSA-2021:2360","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2361","reference_id":"RHSA-2021:2361","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2361"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2372","reference_id":"RHSA-2021:2372","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2372"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2375","reference_id":"RHSA-2021:2375","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2389","reference_id":"RHSA-2021:2389","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2389"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2390","reference_id":"RHSA-2021:2390","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2390"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2391","reference_id":"RHSA-2021:2391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2392","reference_id":"RHSA-2021:2392","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2393","reference_id":"RHSA-2021:2393","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2393"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2394","reference_id":"RHSA-2021:2394","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2394"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2395","reference_id":"RHSA-2021:2395","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2395"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2396","reference_id":"RHSA-2021:2396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2396"},{"reference_url":"https://usn.ubuntu.com/4972-1/","reference_id":"USN-4972-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4972-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87477?format=json","purl":"pkg:generic/postgresql@9.6.22","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.22"},{"url":"http://public2.vulnerablecode.io/api/packages/87476?format=json","purl":"pkg:generic/postgresql@10.17.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.17.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87474?format=json","purl":"pkg:generic/postgresql@11.12.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.12.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87473?format=json","purl":"pkg:generic/postgresql@12.7.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87472?format=json","purl":"pkg:generic/postgresql@13.3.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.3.0"}],"aliases":["CVE-2021-32028"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dw17-wb8r-67bc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58312?format=json","vulnerability_id":"VCID-e3f2-jpwb-d3ag","summary":"pg_user_mappings view discloses foreign server passwordsmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7486.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7486.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7486","reference_id":"","reference_type":"","scores":[{"value":"0.04124","scoring_system":"epss","scoring_elements":"0.88845","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04124","scoring_system":"epss","scoring_elements":"0.88859","published_at":"2026-06-09T12:55:00Z"},{"value":"0.04124","scoring_system":"epss","scoring_elements":"0.88827","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04124","scoring_system":"epss","scoring_elements":"0.88842","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7486"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7486/","reference_id":"","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7486/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448089","reference_id":"1448089","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448089"},{"reference_url":"https://security.archlinux.org/ASA-201705-23","reference_id":"ASA-201705-23","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201705-23"},{"reference_url":"https://security.archlinux.org/AVG-272","reference_id":"AVG-272","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-272"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1677","reference_id":"RHSA-2017:1677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1678","reference_id":"RHSA-2017:1678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1838","reference_id":"RHSA-2017:1838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1983","reference_id":"RHSA-2017:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2425","reference_id":"RHSA-2017:2425","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2425"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87574?format=json","purl":"pkg:generic/postgresql@9.6.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.3"}],"aliases":["CVE-2017-7486"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e3f2-jpwb-d3ag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58340?format=json","vulnerability_id":"VCID-edad-7pdu-pfdb","summary":"TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER executionmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10208.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10208.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10208","reference_id":"","reference_type":"","scores":[{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41659","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41715","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41685","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41651","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41633","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41708","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10208"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10208"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10209"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-115-1010-9615-9519-9424-and-12-beta-3-released-1960/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-115-1010-9615-9519-9424-and-12-beta-3-released-1960/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2019-10208/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2019-10208/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1734416","reference_id":"1734416","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1734416"},{"reference_url":"https://security.archlinux.org/ASA-201908-7","reference_id":"ASA-201908-7","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201908-7"},{"reference_url":"https://security.archlinux.org/ASA-201908-8","reference_id":"ASA-201908-8","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201908-8"},{"reference_url":"https://security.archlinux.org/AVG-1019","reference_id":"AVG-1019","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1019"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0980","reference_id":"RHSA-2020:0980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3669","reference_id":"RHSA-2020:3669","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3669"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4295","reference_id":"RHSA-2020:4295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1512","reference_id":"RHSA-2021:1512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1512"},{"reference_url":"https://usn.ubuntu.com/4090-1/","reference_id":"USN-4090-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4090-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87626?format=json","purl":"pkg:generic/postgresql@9.6.15","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.15"},{"url":"http://public2.vulnerablecode.io/api/packages/87625?format=json","purl":"pkg:generic/postgresql@10.10.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.10.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87624?format=json","purl":"pkg:generic/postgresql@11.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.5.0"}],"aliases":["CVE-2019-10208"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-edad-7pdu-pfdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58348?format=json","vulnerability_id":"VCID-f976-55qs-nfcr","summary":"Memory disclosure in JSON functionsmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15098.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15098","reference_id":"","reference_type":"","scores":[{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.76187","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.76163","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.76155","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.7618","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.76182","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00908","scoring_system":"epss","scoring_elements":"0.76175","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-15098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15099"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:N/A:P"},{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-15098/","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-15098/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1508820","reference_id":"1508820","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1508820"},{"reference_url":"https://security.archlinux.org/ASA-201711-17","reference_id":"ASA-201711-17","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201711-17"},{"reference_url":"https://security.archlinux.org/ASA-201711-18","reference_id":"ASA-201711-18","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201711-18"},{"reference_url":"https://security.archlinux.org/AVG-485","reference_id":"AVG-485","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-485"},{"reference_url":"https://security.archlinux.org/AVG-486","reference_id":"AVG-486","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-486"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://usn.ubuntu.com/3479-1/","reference_id":"USN-3479-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3479-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87564?format=json","purl":"pkg:generic/postgresql@9.6.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.6"},{"url":"http://public2.vulnerablecode.io/api/packages/87563?format=json","purl":"pkg:generic/postgresql@10.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.1.0"}],"aliases":["CVE-2017-15098"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f976-55qs-nfcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6476?format=json","vulnerability_id":"VCID-fhg5-sjsf-pfdx","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7546.json","reference_id":"","reference_type":"","scores":[{"value":"5.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7546.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7546","reference_id":"","reference_type":"","scores":[{"value":"0.33122","scoring_system":"epss","scoring_elements":"0.96998","published_at":"2026-06-05T12:55:00Z"},{"value":"0.33122","scoring_system":"epss","scoring_elements":"0.97004","published_at":"2026-06-09T12:55:00Z"},{"value":"0.33122","scoring_system":"epss","scoring_elements":"0.96994","published_at":"2026-06-04T12:55:00Z"},{"value":"0.33122","scoring_system":"epss","scoring_elements":"0.97001","published_at":"2026-06-08T12:55:00Z"},{"value":"0.33122","scoring_system":"epss","scoring_elements":"0.97","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7546"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7546"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7548"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:P/A:N"},{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/2017-08-10-security-update-release-1772/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7546/","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7546/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477184","reference_id":"1477184","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1477184"},{"reference_url":"https://security.archlinux.org/ASA-201709-2","reference_id":"ASA-201709-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201709-2"},{"reference_url":"https://security.archlinux.org/AVG-381","reference_id":"AVG-381","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-381"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2677","reference_id":"RHSA-2017:2677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2678","reference_id":"RHSA-2017:2678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2728","reference_id":"RHSA-2017:2728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2860","reference_id":"RHSA-2017:2860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2860"},{"reference_url":"https://usn.ubuntu.com/3390-1/","reference_id":"USN-3390-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3390-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87569?format=json","purl":"pkg:generic/postgresql@9.6.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.4"}],"aliases":["CVE-2017-7546"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fhg5-sjsf-pfdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6411?format=json","vulnerability_id":"VCID-fwmm-5yvr-9kcb","summary":"privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12172.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12172.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12172","reference_id":"","reference_type":"","scores":[{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.1675","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.16732","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.16774","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.16855","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.1685","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00053","scoring_system":"epss","scoring_elements":"0.16813","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12172"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:S/C:C/I:C/A:C"},{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-101-966-9510-9415-9320-and-9224-released-1801/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-12172/","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-12172/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1498394","reference_id":"1498394","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1498394"},{"reference_url":"https://security.archlinux.org/AVG-487","reference_id":"AVG-487","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-487"},{"reference_url":"https://security.archlinux.org/AVG-488","reference_id":"AVG-488","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-488"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3402","reference_id":"RHSA-2017:3402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3403","reference_id":"RHSA-2017:3403","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3403"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3404","reference_id":"RHSA-2017:3404","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3404"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:3405","reference_id":"RHSA-2017:3405","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:3405"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87564?format=json","purl":"pkg:generic/postgresql@9.6.6","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.6"},{"url":"http://public2.vulnerablecode.io/api/packages/87563?format=json","purl":"pkg:generic/postgresql@10.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.1.0"}],"aliases":["CVE-2017-12172"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fwmm-5yvr-9kcb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58313?format=json","vulnerability_id":"VCID-h1ct-nyha-jkc5","summary":"selectivity estimators bypass SELECT privilege checksmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7484.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7484.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7484","reference_id":"","reference_type":"","scores":[{"value":"0.01443","scoring_system":"epss","scoring_elements":"0.81111","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01443","scoring_system":"epss","scoring_elements":"0.81121","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01443","scoring_system":"epss","scoring_elements":"0.81079","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01443","scoring_system":"epss","scoring_elements":"0.81103","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01443","scoring_system":"epss","scoring_elements":"0.81107","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7484"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7484"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7485"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7486"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:S/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/2017-05-11-security-update-release-1746/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2017-7484/","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2017-7484/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448078","reference_id":"1448078","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1448078"},{"reference_url":"https://security.archlinux.org/ASA-201705-23","reference_id":"ASA-201705-23","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201705-23"},{"reference_url":"https://security.archlinux.org/AVG-272","reference_id":"AVG-272","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-272"},{"reference_url":"https://security.gentoo.org/glsa/201710-06","reference_id":"GLSA-201710-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1677","reference_id":"RHSA-2017:1677","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1677"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1678","reference_id":"RHSA-2017:1678","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1678"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1838","reference_id":"RHSA-2017:1838","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1838"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1983","reference_id":"RHSA-2017:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:1983"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:2425","reference_id":"RHSA-2017:2425","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:2425"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87574?format=json","purl":"pkg:generic/postgresql@9.6.3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.3"}],"aliases":["CVE-2017-7484"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h1ct-nyha-jkc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5810?format=json","vulnerability_id":"VCID-hxgk-72w3-hfes","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25695.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25695.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25695","reference_id":"","reference_type":"","scores":[{"value":"0.23757","scoring_system":"epss","scoring_elements":"0.96109","published_at":"2026-06-05T12:55:00Z"},{"value":"0.23757","scoring_system":"epss","scoring_elements":"0.96118","published_at":"2026-06-09T12:55:00Z"},{"value":"0.23757","scoring_system":"epss","scoring_elements":"0.96104","published_at":"2026-06-04T12:55:00Z"},{"value":"0.23757","scoring_system":"epss","scoring_elements":"0.96112","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25695"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25695","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25695"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2020-25695/","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2020-25695/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894425","reference_id":"1894425","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894425"},{"reference_url":"https://security.archlinux.org/ASA-202011-14","reference_id":"ASA-202011-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202011-14"},{"reference_url":"https://security.archlinux.org/AVG-1276","reference_id":"AVG-1276","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1276"},{"reference_url":"https://security.gentoo.org/glsa/202012-07","reference_id":"GLSA-202012-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5316","reference_id":"RHSA-2020:5316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5317","reference_id":"RHSA-2020:5317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5567","reference_id":"RHSA-2020:5567","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5567"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5620","reference_id":"RHSA-2020:5620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0161","reference_id":"RHSA-2021:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0163","reference_id":"RHSA-2021:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1512","reference_id":"RHSA-2021:1512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1512"},{"reference_url":"https://usn.ubuntu.com/4633-1/","reference_id":"USN-4633-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4633-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87494?format=json","purl":"pkg:generic/postgresql@9.6.20","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.20"},{"url":"http://public2.vulnerablecode.io/api/packages/87493?format=json","purl":"pkg:generic/postgresql@10.15.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.15.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87492?format=json","purl":"pkg:generic/postgresql@11.10.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.10.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87491?format=json","purl":"pkg:generic/postgresql@12.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87490?format=json","purl":"pkg:generic/postgresql@13.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.1.0"}],"aliases":["CVE-2020-25695"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hxgk-72w3-hfes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58289?format=json","vulnerability_id":"VCID-mru5-m6c1-m7dd","summary":"pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-3466","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30153","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30227","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30146","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30161","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30131","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-3466"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3466","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3466"},{"reference_url":"https://www.postgresql.org/about/news/additional-advisory-to-2019-11-14-cumulative-update-release-for-debian-and-ubuntu-users-1998/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/additional-advisory-to-2019-11-14-cumulative-update-release-for-debian-and-ubuntu-users-1998/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2019-3466/","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2019-3466/"},{"reference_url":"https://usn.ubuntu.com/4194-1/","reference_id":"USN-4194-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4194-1/"},{"reference_url":"https://usn.ubuntu.com/4194-2/","reference_id":"USN-4194-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4194-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87519?format=json","purl":"pkg:generic/postgresql@9.6.16","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.16"},{"url":"http://public2.vulnerablecode.io/api/packages/87518?format=json","purl":"pkg:generic/postgresql@10.11.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.11.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87517?format=json","purl":"pkg:generic/postgresql@11.6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87516?format=json","purl":"pkg:generic/postgresql@12.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.1.0"}],"aliases":["CVE-2019-3466"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mru5-m6c1-m7dd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58346?format=json","vulnerability_id":"VCID-nssh-f818-puc7","summary":"pg_upgrade creates file of sensitive metadata under prevailing umaskmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1053.json","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1053.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1053","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25073","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25054","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25103","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25045","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25169","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25156","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1053"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-102-967-9511-9416-and-9321-released-1829/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-102-967-9511-9416-and-9321-released-1829/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2018-1053/","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3","scoring_elements":"['AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2018-1053/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539619","reference_id":"1539619","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3816","reference_id":"RHSA-2018:3816","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3816"},{"reference_url":"https://usn.ubuntu.com/3564-1/","reference_id":"USN-3564-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3564-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87649?format=json","purl":"pkg:generic/postgresql@9.6.7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.7"},{"url":"http://public2.vulnerablecode.io/api/packages/87648?format=json","purl":"pkg:generic/postgresql@10.2.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.2.0"}],"aliases":["CVE-2018-1053"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nssh-f818-puc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58341?format=json","vulnerability_id":"VCID-pqme-yhyh-efd8","summary":"Selectivity estimators bypass row security policiesmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10130.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10130.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10130","reference_id":"","reference_type":"","scores":[{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.48873","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.4891","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.48925","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.48895","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.48935","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00254","scoring_system":"epss","scoring_elements":"0.48943","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-10130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10130"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-113-108-9613-9517-and-9422-released-1939/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-113-108-9613-9517-and-9422-released-1939/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2019-10130/","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2019-10130/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1707109","reference_id":"1707109","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1707109"},{"reference_url":"https://security.gentoo.org/glsa/202003-03","reference_id":"GLSA-202003-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:0980","reference_id":"RHSA-2020:0980","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:0980"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3669","reference_id":"RHSA-2020:3669","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3669"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4295","reference_id":"RHSA-2020:4295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://usn.ubuntu.com/3972-1/","reference_id":"USN-3972-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3972-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87631?format=json","purl":"pkg:generic/postgresql@9.6.13","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.13"},{"url":"http://public2.vulnerablecode.io/api/packages/87630?format=json","purl":"pkg:generic/postgresql@10.8.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.8.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87629?format=json","purl":"pkg:generic/postgresql@11.3.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.3.0"}],"aliases":["CVE-2019-10130"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pqme-yhyh-efd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58351?format=json","vulnerability_id":"VCID-qcxh-n55y-yfep","summary":"Too-permissive access control list on function pg_logfile_rotate()more details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1115.json","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1115.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1115","reference_id":"","reference_type":"","scores":[{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69645","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69685","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69671","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69692","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00593","scoring_system":"epss","scoring_elements":"0.69682","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1115"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-104-969-9513-9418-and-9323-released-1851/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-104-969-9513-9418-and-9323-released-1851/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2018-1115/","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2018-1115/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1573276","reference_id":"1573276","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1573276"},{"reference_url":"https://security.gentoo.org/glsa/201810-08","reference_id":"GLSA-201810-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201810-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2565","reference_id":"RHSA-2018:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87659?format=json","purl":"pkg:generic/postgresql@9.6.9","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.9"},{"url":"http://public2.vulnerablecode.io/api/packages/87658?format=json","purl":"pkg:generic/postgresql@10.4.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.4.0"}],"aliases":["CVE-2018-1115"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qcxh-n55y-yfep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5809?format=json","vulnerability_id":"VCID-qzgd-9xrc-ubdb","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25696.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25696.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25696","reference_id":"","reference_type":"","scores":[{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65113","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65119","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65107","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65095","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65066","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00473","scoring_system":"epss","scoring_elements":"0.65108","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25696"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-131-125-1110-1015-9620-and-9524-released-2111/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2020-25696/","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2020-25696/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894430","reference_id":"1894430","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1894430"},{"reference_url":"https://security.archlinux.org/ASA-202011-14","reference_id":"ASA-202011-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202011-14"},{"reference_url":"https://security.archlinux.org/AVG-1276","reference_id":"AVG-1276","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1276"},{"reference_url":"https://security.gentoo.org/glsa/202012-07","reference_id":"GLSA-202012-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5316","reference_id":"RHSA-2020:5316","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5316"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5317","reference_id":"RHSA-2020:5317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5401","reference_id":"RHSA-2020:5401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5567","reference_id":"RHSA-2020:5567","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5567"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5620","reference_id":"RHSA-2020:5620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5638","reference_id":"RHSA-2020:5638","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5638"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0057","reference_id":"RHSA-2021:0057","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0057"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0161","reference_id":"RHSA-2021:0161","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0161"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0163","reference_id":"RHSA-2021:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0165","reference_id":"RHSA-2021:0165","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://usn.ubuntu.com/4633-1/","reference_id":"USN-4633-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4633-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87494?format=json","purl":"pkg:generic/postgresql@9.6.20","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.20"},{"url":"http://public2.vulnerablecode.io/api/packages/87493?format=json","purl":"pkg:generic/postgresql@10.15.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.15.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87492?format=json","purl":"pkg:generic/postgresql@11.10.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.10.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87491?format=json","purl":"pkg:generic/postgresql@12.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87490?format=json","purl":"pkg:generic/postgresql@13.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.1.0"}],"aliases":["CVE-2020-25696"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qzgd-9xrc-ubdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58283?format=json","vulnerability_id":"VCID-rmp2-5sag-mqce","summary":"Buffer overrun from integer overflow in array subscripting calculationsmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32027.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-32027.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32027","reference_id":"","reference_type":"","scores":[{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60731","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00395","scoring_system":"epss","scoring_elements":"0.60746","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00491","scoring_system":"epss","scoring_elements":"0.65987","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00491","scoring_system":"epss","scoring_elements":"0.65934","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00491","scoring_system":"epss","scoring_elements":"0.65998","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00491","scoring_system":"epss","scoring_elements":"0.65984","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32027"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32027"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32028","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32028"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32029"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-133-127-1112-1017-and-9622-released-2210/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2021-32027/","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2021-32027/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956876","reference_id":"1956876","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1956876"},{"reference_url":"https://security.archlinux.org/ASA-202106-15","reference_id":"ASA-202106-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202106-15"},{"reference_url":"https://security.archlinux.org/AVG-1956","reference_id":"AVG-1956","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1956"},{"reference_url":"https://security.gentoo.org/glsa/202211-04","reference_id":"GLSA-202211-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2360","reference_id":"RHSA-2021:2360","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2361","reference_id":"RHSA-2021:2361","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2361"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2372","reference_id":"RHSA-2021:2372","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2372"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2375","reference_id":"RHSA-2021:2375","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2389","reference_id":"RHSA-2021:2389","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2389"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2390","reference_id":"RHSA-2021:2390","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2390"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2391","reference_id":"RHSA-2021:2391","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2391"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2392","reference_id":"RHSA-2021:2392","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2393","reference_id":"RHSA-2021:2393","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2393"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2394","reference_id":"RHSA-2021:2394","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2394"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2395","reference_id":"RHSA-2021:2395","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2395"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2396","reference_id":"RHSA-2021:2396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2396"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2397","reference_id":"RHSA-2021:2397","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2397"},{"reference_url":"https://usn.ubuntu.com/4972-1/","reference_id":"USN-4972-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4972-1/"},{"reference_url":"https://usn.ubuntu.com/5645-1/","reference_id":"USN-5645-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5645-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87477?format=json","purl":"pkg:generic/postgresql@9.6.22","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.22"},{"url":"http://public2.vulnerablecode.io/api/packages/87476?format=json","purl":"pkg:generic/postgresql@10.17.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.17.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87474?format=json","purl":"pkg:generic/postgresql@11.12.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.12.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87473?format=json","purl":"pkg:generic/postgresql@12.7.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87472?format=json","purl":"pkg:generic/postgresql@13.3.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.3.0"}],"aliases":["CVE-2021-32027"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rmp2-5sag-mqce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5008?format=json","vulnerability_id":"VCID-v6ru-cn2p-7ba1","summary":"man-in-the-middle","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23214.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23214.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23214","reference_id":"","reference_type":"","scores":[{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.41042","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.41094","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.41063","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.41032","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.41015","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.4109","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23214"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23214","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23214"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23222","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23222"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-141-135-129-1114-1019-and-9624-released-2349/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-141-135-129-1114-1019-and-9624-released-2349/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2021-23214/","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2021-23214/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022666","reference_id":"2022666","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2022666"},{"reference_url":"https://security.archlinux.org/ASA-202204-1","reference_id":"ASA-202204-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202204-1"},{"reference_url":"https://security.archlinux.org/AVG-2546","reference_id":"AVG-2546","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2546"},{"reference_url":"https://security.gentoo.org/glsa/202211-04","reference_id":"GLSA-202211-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202211-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5179","reference_id":"RHSA-2021:5179","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5197","reference_id":"RHSA-2021:5197","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5197"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5235","reference_id":"RHSA-2021:5235","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5235"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5236","reference_id":"RHSA-2021:5236","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5236"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1830","reference_id":"RHSA-2022:1830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1830"},{"reference_url":"https://usn.ubuntu.com/5145-1/","reference_id":"USN-5145-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5145-1/"},{"reference_url":"https://usn.ubuntu.com/5645-1/","reference_id":"USN-5645-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5645-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87482?format=json","purl":"pkg:generic/postgresql@9.6.24","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.24"},{"url":"http://public2.vulnerablecode.io/api/packages/87481?format=json","purl":"pkg:generic/postgresql@10.19.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.19.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87480?format=json","purl":"pkg:generic/postgresql@11.14.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.14.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87479?format=json","purl":"pkg:generic/postgresql@12.9.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.9.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87478?format=json","purl":"pkg:generic/postgresql@13.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@13.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87382?format=json","purl":"pkg:generic/postgresql@14.1.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@14.1.0"}],"aliases":["CVE-2021-23214"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v6ru-cn2p-7ba1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58285?format=json","vulnerability_id":"VCID-vqkw-k2zg-7ucq","summary":"Uncontrolled search path element in CREATE EXTENSIONmore details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14350","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09172","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09184","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09213","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09155","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09214","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09232","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14350"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-124-119-1014-9619-9523-and-13-beta-3-released-2060/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-124-119-1014-9619-9523-and-13-beta-3-released-2060/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2020-14350/","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2020-14350/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1865746","reference_id":"1865746","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1865746"},{"reference_url":"https://security.gentoo.org/glsa/202008-13","reference_id":"GLSA-202008-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202008-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:3669","reference_id":"RHSA-2020:3669","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:3669"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4295","reference_id":"RHSA-2020:4295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5110","reference_id":"RHSA-2020:5110","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5110"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5112","reference_id":"RHSA-2020:5112","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5112"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5619","reference_id":"RHSA-2020:5619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5619"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5620","reference_id":"RHSA-2020:5620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5620"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5661","reference_id":"RHSA-2020:5661","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5661"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5664","reference_id":"RHSA-2020:5664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0163","reference_id":"RHSA-2021:0163","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0164","reference_id":"RHSA-2021:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0166","reference_id":"RHSA-2021:0166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0167","reference_id":"RHSA-2021:0167","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0988","reference_id":"RHSA-2021:0988","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0988"},{"reference_url":"https://usn.ubuntu.com/4472-1/","reference_id":"USN-4472-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4472-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87499?format=json","purl":"pkg:generic/postgresql@9.6.19","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.19"},{"url":"http://public2.vulnerablecode.io/api/packages/87498?format=json","purl":"pkg:generic/postgresql@10.14.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.14.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87497?format=json","purl":"pkg:generic/postgresql@11.9.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@11.9.0"},{"url":"http://public2.vulnerablecode.io/api/packages/87496?format=json","purl":"pkg:generic/postgresql@12.4.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@12.4.0"}],"aliases":["CVE-2020-14350"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vqkw-k2zg-7ucq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6321?format=json","vulnerability_id":"VCID-yj2n-tv5y-kke9","summary":"privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1058.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1058.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1058","reference_id":"","reference_type":"","scores":[{"value":"0.81248","scoring_system":"epss","scoring_elements":"0.99187","published_at":"2026-06-05T12:55:00Z"},{"value":"0.81248","scoring_system":"epss","scoring_elements":"0.99189","published_at":"2026-06-09T12:55:00Z"},{"value":"0.81248","scoring_system":"epss","scoring_elements":"0.99186","published_at":"2026-06-04T12:55:00Z"},{"value":"0.81248","scoring_system":"epss","scoring_elements":"0.99188","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-1058"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-103-968-9512-9417-and-9322-released-1834/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-103-968-9512-9417-and-9322-released-1834/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2018-1058/","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H']"}],"url":"https://www.postgresql.org/support/security/CVE-2018-1058/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1547044","reference_id":"1547044","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1547044"},{"reference_url":"https://security.archlinux.org/ASA-201803-9","reference_id":"ASA-201803-9","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201803-9"},{"reference_url":"https://security.archlinux.org/AVG-643","reference_id":"AVG-643","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-643"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3816","reference_id":"RHSA-2018:3816","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3816"},{"reference_url":"https://usn.ubuntu.com/3589-1/","reference_id":"USN-3589-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3589-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87644?format=json","purl":"pkg:generic/postgresql@9.6.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.8"},{"url":"http://public2.vulnerablecode.io/api/packages/87643?format=json","purl":"pkg:generic/postgresql@10.3.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.3.0"}],"aliases":["CVE-2018-1058"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yj2n-tv5y-kke9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58344?format=json","vulnerability_id":"VCID-z5dd-5auq-ruau","summary":"Memory disclosure and missing authorization in INSERT ... ON CONFLICT DO UPDATE.more details","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10925.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10925.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10925","reference_id":"","reference_type":"","scores":[{"value":"0.00383","scoring_system":"epss","scoring_elements":"0.59976","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00383","scoring_system":"epss","scoring_elements":"0.59929","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00383","scoring_system":"epss","scoring_elements":"0.5998","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61478","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61474","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61458","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-10925"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10915","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10915"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10925","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10925"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.postgresql.org/about/news/postgresql-105-9610-9514-9419-9324-and-11-beta-3-released-1878/","reference_id":"","reference_type":"","scores":[],"url":"https://www.postgresql.org/about/news/postgresql-105-9610-9514-9419-9324-and-11-beta-3-released-1878/"},{"reference_url":"https://www.postgresql.org/support/security/CVE-2018-10925/","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N']"}],"url":"https://www.postgresql.org/support/security/CVE-2018-10925/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1612619","reference_id":"1612619","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1612619"},{"reference_url":"https://security.gentoo.org/glsa/201810-08","reference_id":"GLSA-201810-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201810-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2511","reference_id":"RHSA-2018:2511","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2511"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2565","reference_id":"RHSA-2018:2565","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2565"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:2566","reference_id":"RHSA-2018:2566","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:2566"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3816","reference_id":"RHSA-2018:3816","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3816"},{"reference_url":"https://usn.ubuntu.com/3744-1/","reference_id":"USN-3744-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3744-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/87639?format=json","purl":"pkg:generic/postgresql@9.6.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.10"},{"url":"http://public2.vulnerablecode.io/api/packages/87638?format=json","purl":"pkg:generic/postgresql@10.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@10.5.0"}],"aliases":["CVE-2018-10925"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z5dd-5auq-ruau"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:generic/postgresql@9.6.0"}