Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Actian Subscribe
Filtered by product Zen
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-40756 1 Actian 2 Psql, Zen 2022-10-05 N/A 8.8 HIGH
If folder security is misconfigured for Actian Zen PSQL BEFORE Patch Update 1 for Zen 15 SP1 (v15.11.005), Patch Update 4 for Zen 15 (v15.01.017), or Patch Update 5 for Zen 14 SP2 (v14.21.022), it can allow an attacker (with file read/write access) to remove specific security files in order to reset the master password and gain access to the database.
CVE-2017-11757 1 Actian 2 Pervasive Psql, Zen 2019-10-02 7.5 HIGH 9.8 CRITICAL
Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to execute arbitrary code via crafted traffic to TCP port 1583. The overflow occurs after Server-Client encryption-key exchange. The issue results from an integer underflow that leads to a zero-byte allocation. The _srvLnaConnectMP1 function is affected.