VulnerableCode Vulnerability Details

System	Score	Found at
generic_textual	Medium	http://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-14350.html
rhas	Moderate	https://access.redhat.com/errata/RHSA-2020:3669
rhas	Moderate	https://access.redhat.com/errata/RHSA-2020:4295
rhas	Moderate	https://access.redhat.com/errata/RHSA-2020:5110
rhas	Moderate	https://access.redhat.com/errata/RHSA-2020:5112
rhas	Important	https://access.redhat.com/errata/RHSA-2020:5619
rhas	Important	https://access.redhat.com/errata/RHSA-2020:5620
rhas	Important	https://access.redhat.com/errata/RHSA-2020:5661
rhas	Important	https://access.redhat.com/errata/RHSA-2020:5664
rhas	Important	https://access.redhat.com/errata/RHSA-2021:0163
rhas	Important	https://access.redhat.com/errata/RHSA-2021:0164
rhas	Important	https://access.redhat.com/errata/RHSA-2021:0166
rhas	Important	https://access.redhat.com/errata/RHSA-2021:0167
rhas	Moderate	https://access.redhat.com/errata/RHSA-2021:0988
cvssv3	7.1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00027	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00045	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
epss	0.00061	https://api.first.org/data/v1/epss?cve=CVE-2020-14350
rhbs	medium	https://bugzilla.redhat.com/show_bug.cgi?id=1865746
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14350
cvssv3.1	7.3	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2	4.4	https://nvd.nist.gov/vuln/detail/CVE-2020-14350
cvssv3	7.3	https://nvd.nist.gov/vuln/detail/CVE-2020-14350
cvssv3.1	7.3	https://nvd.nist.gov/vuln/detail/CVE-2020-14350
generic_textual	Medium	https://ubuntu.com/security/notices/USN-4472-1
generic_textual	Medium	https://www.postgresql.org/about/news/2060/
cvssv3	7.1	https://www.postgresql.org/support/security/CVE-2020-14350/

System

Score

Found at

generic_textual

Medium

http://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-14350.html

rhas

Moderate

https://access.redhat.com/errata/RHSA-2020:3669

rhas

Moderate

https://access.redhat.com/errata/RHSA-2020:4295

rhas

Moderate

https://access.redhat.com/errata/RHSA-2020:5110

rhas

Moderate

https://access.redhat.com/errata/RHSA-2020:5112

rhas

Important

https://access.redhat.com/errata/RHSA-2020:5619

rhas

Important

https://access.redhat.com/errata/RHSA-2020:5620

rhas

Important

https://access.redhat.com/errata/RHSA-2020:5661

rhas

Important

https://access.redhat.com/errata/RHSA-2020:5664

rhas

Important

https://access.redhat.com/errata/RHSA-2021:0163

rhas

Important

https://access.redhat.com/errata/RHSA-2021:0164

rhas

Important

https://access.redhat.com/errata/RHSA-2021:0166

rhas

Important

https://access.redhat.com/errata/RHSA-2021:0167

rhas

Moderate

https://access.redhat.com/errata/RHSA-2021:0988

cvssv3

7.1

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00025

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00027

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00031

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00031

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00031

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00045

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

epss

0.00061

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

rhbs

medium

https://bugzilla.redhat.com/show_bug.cgi?id=1865746

generic_textual

Medium

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14350

cvssv3.1

7.3

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

cvssv2

4.4

https://nvd.nist.gov/vuln/detail/CVE-2020-14350

cvssv3

7.3

https://nvd.nist.gov/vuln/detail/CVE-2020-14350

cvssv3.1

7.3

https://nvd.nist.gov/vuln/detail/CVE-2020-14350

generic_textual

Medium

https://ubuntu.com/security/notices/USN-4472-1

generic_textual

Medium

https://www.postgresql.org/about/news/2060/

cvssv3

7.1

https://www.postgresql.org/support/security/CVE-2020-14350/

Reference id	Reference type	URL
		http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html
		http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00044.html
		http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00049.html
		http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00050.html
		http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00003.html
		http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00008.html
		http://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-14350.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json
		https://api.first.org/data/v1/epss?cve=CVE-2020-14350
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14350
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://lists.debian.org/debian-lts-announce/2020/08/msg00028.html
		https://security.gentoo.org/glsa/202008-13
		https://security.netapp.com/advisory/ntap-20200918-0002/
		https://ubuntu.com/security/notices/USN-4472-1
		https://usn.ubuntu.com/4472-1/
		https://www.postgresql.org/about/news/2060/
		https://www.postgresql.org/about/news/postgresql-124-119-1014-9619-9523-and-13-beta-3-released-2060/
		https://www.postgresql.org/support/security/CVE-2020-14350/
1865746		https://bugzilla.redhat.com/show_bug.cgi?id=1865746
cpe:2.3:a:postgresql:postgresql::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql::::::::
cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
cpe:2.3:o:debian:debian_linux:9.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
cpe:2.3:o:opensuse:leap:15.1:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*
cpe:2.3:o:opensuse:leap:15.2:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.2:::::::*
CVE-2020-14350		https://nvd.nist.gov/vuln/detail/CVE-2020-14350
RHSA-2020:3669		https://access.redhat.com/errata/RHSA-2020:3669
RHSA-2020:4295		https://access.redhat.com/errata/RHSA-2020:4295
RHSA-2020:5110		https://access.redhat.com/errata/RHSA-2020:5110
RHSA-2020:5112		https://access.redhat.com/errata/RHSA-2020:5112
RHSA-2020:5619		https://access.redhat.com/errata/RHSA-2020:5619
RHSA-2020:5620		https://access.redhat.com/errata/RHSA-2020:5620
RHSA-2020:5661		https://access.redhat.com/errata/RHSA-2020:5661
RHSA-2020:5664		https://access.redhat.com/errata/RHSA-2020:5664
RHSA-2021:0163		https://access.redhat.com/errata/RHSA-2021:0163
RHSA-2021:0164		https://access.redhat.com/errata/RHSA-2021:0164
RHSA-2021:0166		https://access.redhat.com/errata/RHSA-2021:0166
RHSA-2021:0167		https://access.redhat.com/errata/RHSA-2021:0167
RHSA-2021:0988		https://access.redhat.com/errata/RHSA-2021:0988

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00043.html

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00049.html

http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00050.html

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00008.html

http://people.canonical.com/~ubuntu-security/cve/2020/CVE-2020-14350.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json

https://api.first.org/data/v1/epss?cve=CVE-2020-14350

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14350

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

https://lists.debian.org/debian-lts-announce/2020/08/msg00028.html

https://security.gentoo.org/glsa/202008-13

https://security.netapp.com/advisory/ntap-20200918-0002/

https://ubuntu.com/security/notices/USN-4472-1

https://usn.ubuntu.com/4472-1/

https://www.postgresql.org/about/news/2060/

https://www.postgresql.org/about/news/postgresql-124-119-1014-9619-9523-and-13-beta-3-released-2060/

https://www.postgresql.org/support/security/CVE-2020-14350/

1865746

https://bugzilla.redhat.com/show_bug.cgi?id=1865746

cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

CVE-2020-14350

https://nvd.nist.gov/vuln/detail/CVE-2020-14350

RHSA-2020:3669

https://access.redhat.com/errata/RHSA-2020:3669

RHSA-2020:4295

https://access.redhat.com/errata/RHSA-2020:4295

RHSA-2020:5110

https://access.redhat.com/errata/RHSA-2020:5110

RHSA-2020:5112

https://access.redhat.com/errata/RHSA-2020:5112

RHSA-2020:5619

https://access.redhat.com/errata/RHSA-2020:5619

RHSA-2020:5620

https://access.redhat.com/errata/RHSA-2020:5620

RHSA-2020:5661

https://access.redhat.com/errata/RHSA-2020:5661

RHSA-2020:5664

https://access.redhat.com/errata/RHSA-2020:5664

RHSA-2021:0163

https://access.redhat.com/errata/RHSA-2021:0163

RHSA-2021:0164

https://access.redhat.com/errata/RHSA-2021:0164

RHSA-2021:0166

https://access.redhat.com/errata/RHSA-2021:0166

RHSA-2021:0167

https://access.redhat.com/errata/RHSA-2021:0167

RHSA-2021:0988

https://access.redhat.com/errata/RHSA-2021:0988

Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14350.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2020-14350

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2020-14350

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2020-14350

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

There are no relevant records.

Vulnerability ID	VCID-fqn5-6psn-aaac
Aliases	CVE-2020-14350
Summary	It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affects PostgreSQL versions before 12.4, before 11.9, before 10.14, before 9.6.19, and before 9.5.23.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

CWE-426	Untrusted Search Path
CWE-20	Improper Input Validation

Percentile	0.0397
EPSS Score	0.00025
Published At	March 28, 2025, 12:55 p.m.