rpm package
suse/ongres-scram&distro=SUSE Manager Server Module 4.2
pkg:rpm/suse/ongres-scram&distro=SUSE%20Manager%20Server%20Module%204.2
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-26520 | — | < 2.1-150300.3.3.4 | 2.1-150300.3.3.4 | Mar 7, 2022 | In pgjdbc before 42.3.3, an attacker (who controls the jdbc URL or properties) can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. An example situation is that an attacker could create an executable JSP |
- CVE-2022-26520Mar 7, 2022affected < 2.1-150300.3.3.4fixed 2.1-150300.3.3.4
In pgjdbc before 42.3.3, an attacker (who controls the jdbc URL or properties) can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. An example situation is that an attacker could create an executable JSP