📦

zen

Vendor: actian

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 18 Total Indexed

Avg. EPSS 1.83% Exploit Prob.

Latest CVE CVE-2022-40756 Sep 30

Security Vulnerability Index

Page 1 / 2

8.8 CVSS

CVE-2022-40756

If folder security is misconfigured for Actian Zen PSQL BEFORE Patch Update 1 for Zen 15 SP1 (v15.11.005), Patch Update 4 for Zen 15 (v15.01.017), or Patch Update 5 for Zen 14 SP2 (v14.21.022), it can allow an attacker (with file read/write access) to remove specific security files in order to reset the master password and gain access to the database.

EPSS: 0.35%

Severity: HIGH

Sep 30, 2022

9.8 CVSS

CVE-2017-11757

Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to execute arbitrary code via crafted traffic to TCP port 1583. The overflow occurs after Server-Client encryption-key exchange. The issue results from an integer underflow that leads to a zero-byte allocation. The _srvLnaConnectMP1 function is affected.

EPSS: 3.32%

Severity: CRITICAL

Jul 31, 2017

Displaying 2 of 18 Total Entries

1 2

Total 2 Sections