| VID |
25294 |
| Severity |
30 |
| Port |
5432 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The version of PostgreSQL installed on the remote host is 9.4.x prior to 9.4.20.
It is, therefore, affected by SQL Injection.
* References:
https://www.postgresql.org/about/news/1905/
https://www.postgresql.org/docs/current/release-9-4-20.html
* Platforms Affected:
PostgreSQL prior to 9.4.20
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of PostgreSQL (9.4.20 or later), available from the PostgreSQL Web page at http://www.postgresql.org/download/ |
| Related URL |
CVE-2018-16850 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
