VYPR
Vendor

GaussDB

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2020-1811HigFeb 18, 2020
    risk 0.57cvss 8.8epss 0.01

    GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker…

  • CVE-2020-1853MedFeb 17, 2020
    risk 0.42cvss 6.5epss 0.01

    GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage.