FortiClient Vulnerability

PostgreSQL CVE-2018-16850 SQL Injection Vulnerability

Description

A SQL Injection flaw has been discovered in PostgreSQL server in the way triggers that enable transition relations are dumped. The transition relation name is not correctly quoted and it may allow an attacker with CREATE privilege on some non-temporary schema or TRIGGER privilege on some table to create a malicious trigger that, when dumped and restored, would result in additional SQL statements being executed.

Affected Applications

PostgreSQL

CVE References

CVE-2018-16850

Other References

https://www.postgresql.org/support/security/

ID	55837
Created	Dec 11, 2018
Description Updated	Mar 01, 2024
Risk
Coverage	FortiClient
OS	Windows
Vendor	PostgreSQL
Patch	manual
Application	PostgreSQL

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

PostgreSQL CVE-2018-16850 SQL Injection Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

PostgreSQL CVE-2018-16850 SQL Injection Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center