CVE-2017-7548

CVE-2017-7548

Vendor Postgresql
Product postgresql
Weakness CWE-862 · Missing authorization
Published August 16, 2017
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

Key dates

02Disclosure timeline

August 16, 2017 CVE published
September 16, 2024 Record updated