How severe is CVE-2023-5870?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2023-5870?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2023-5870 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.

Related Vulnerabilities

CVE-2018-17977

MEDIUM

CVSS:4.4(Medium)

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumpti...

CWE-4002018

CVE-2021-0008

MEDIUM

CVSS:4.4(Medium)

Uncontrolled resource consumption in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denia...

CWE-4002021

CVE-2021-0092

MEDIUM

CVSS:4.4(Medium)

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

CWE-4002021

CVE-2022-0353

MEDIUM

CVSS:4.4(Medium)

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrativ...

CWE-4002022

CVE-2022-3698

MEDIUM

CVSS:4.4(Medium)

CWE-4002022

CVE-2022-43880

MEDIUM

CVSS:4.4(Medium)

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151.

CWE-4002022