Vulnerability & Exploit Database

Displaying all 4 entries

Results for: CVE-2018-16850 Back to search

Gentoo Linux: CVE-2018-16850: PostgreSQL: SQL injection Vulnerability

  • Severity: 4
  • Published: November 13, 2018

postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.

Ubuntu: USN-3818-1 (CVE-2018-16850): PostgreSQL vulnerability Vulnerability

  • Severity: 4
  • Published: November 08, 2018

postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.

SUSE: CVE-2018-16850: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 08, 2018

postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.