RSS   Vulnerabilities for 'Asyncpg'   RSS

2020-08-12
 
CVE-2020-17446

CWE-824
 

 
asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code (on a database client) via a crafted server response, because of access to an uninitialized pointer in the array data decoder.

 

 >>> Vendor: Magic 2 Products
Edeveloper
Asyncpg


Copyright 2022, cxsecurity.com

 

Back to Top