Skip to main content

Desktop Workstation

1 CVEs product

Monthly

CVE-2012-0867 MEDIUM This Month

PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure PostgreSQL Opensuse Debian Linux Desktop Workstation +7
NVD
CVSS 2.0
4.3
EPSS
1.9%
EPSS 2% CVSS 4.3
MEDIUM This Month

PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure PostgreSQL Opensuse +9
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy