CVE-2010-1447
Description
The Safe (aka Safe.pm) module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended (1) Safe::reval and (2) Safe::rdo access restrictions, and inject and execute arbitrary code, via vectors involving subroutine references and delayed execution.
Risk Information
Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.615
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in Postgresql 9.0.0 | Windows |
| Vulnerability CVE-2010-1169,CVE-2010-1170,CVE-2010-1447,CVE-2010-1975 are affected in Postgresql 9.0.0 | Windows |
| Multiple vulnerabilities affected in Postgresql 9.0.0 (For Linux) | Linux |
| Vulnerability CVE-2010-1169,CVE-2010-1170,CVE-2010-1447,CVE-2010-1975 are affected in Postgresql 9.0.0 (For Linux) | Linux |
| CVE-2010-1447 | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234