CVE-2022-23121

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2022-23121 is a vulnerability that affects the popular open-source database management system, PostgreSQL. The vulnerability allows an attacker to perform arbitrary code execution by exploiting a flaw in the way PostgreSQL processes certain SQL queries. An attacker who successfully exploits this vulnerability could gain complete control of the affected system, including access to sensitive data and the ability to launch further attacks. The vulnerability was assigned CVE-2022-23121 on January 11th, 2022, and was publicly disclosed on February 8th, 2022. At the time of disclosure, PostgreSQL had released a patch to address the vulnerability, and users were urged to update their installations immediately. This vulnerability was rated as critical severity, with a CVSS score of 9.8 out of 10, indicating that it is a serious threat that requires immediate attention. Following the disclosure of CVE-2022-23121, security researchers noted an increase in attacks targeting unpatched PostgreSQL installations. Given the popularity of PostgreSQL and its use in many mission-critical applications, organizations are advised to take immediate action to mitigate this vulnerability in order to protect against potential attacks. This incident highlights the importance of keeping software up-to-date and staying aware of new vulnerabilities as they are disclosed.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2022-23121 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Debian LTS: DLA-3426-1: netatalk security update | LinuxSecurity.com