CVE-2021-23222 is a vulnerability in PostgreSQL
Published on March 2, 2022

A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.

Github Repository Vendor Advisory NVD

Weakness Type

Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Products Associated with CVE-2021-23222

Want to know whenever a new CVE is published for PostgreSQL? stack.watch will email you.

PostgreSQL

Exploit Probability

EPSS

0.28%

Percentile

51.43%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-23222 is a vulnerability in PostgreSQLPublished on March 2, 2022

Weakness Type

Insufficiently Protected Credentials

Products Associated with CVE-2021-23222

Exploit Probability

CVE-2021-23222 is a vulnerability in PostgreSQL
Published on March 2, 2022