Description

PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."

Remediation

References

CVE-2013-1900

Related Vulnerabilities

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.17)

WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.22)

Apache HTTP Server Other Vulnerability (CVE-2006-4154)

WordPress Plugin WP w3all phpBB Multiple Unspecified Vulnerabilities (1.6.3)

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1862)

Severity

High

Classification

CVE-2013-1900

Tags

Missing Update Known Vulnerabilities