CVE-2018-18446

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2018-18446 is a vulnerability that affects the popular open-source database management system, PostgreSQL. Specifically, it is a buffer overflow vulnerability in the JSON functions of PostgreSQL, which can be exploited by an attacker to execute arbitrary code on the affected system. This vulnerability was assigned a CVSS score of 7.5, which means it is categorized as a high-severity vulnerability. The vulnerability was initially discovered by a researcher in December 2018 and reported to the PostgreSQL security team. A patch was released soon after to address the vulnerability. However, it wasn't until March 2019 that the vulnerability was publicly disclosed, giving attackers several months to potentially exploit the vulnerability before it was made widely known. As with many vulnerabilities, it is essential for organizations using PostgreSQL to stay up-to-date with patches and security updates to ensure their systems are not vulnerable to known exploits. In the case of CVE-2018-18446, prompt action was taken to provide a patch for the vulnerability, but delays in public disclosure could have put some organizations at risk.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2018-18446 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards