Searching
..

Click anywhere to stop

KLA52240
RCE vulnerability in PostgreSQL

Updated: 01/25/2024
Detect date
?
08/10/2023
Severity
?
High
Description

Remote code execution vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code.

Affected products

PostgreSQL 15.x earlier than 15.4
PostgreSQL 14.x earlier than 14.9
PostgreSQL 13.x earlier than 13.12
PostgreSQL 12.x earlier than 12.16
PostgreSQL 11.x earlier than 11.21

Solution

Update to the latest version
Download PostgreSQL

Original advisories

PostgreSQL: CVE-2023-39417: Extension script @substitutions@ within quoting allow SQL injection

Impacts
?
ACE 
[?]

SB 
[?]
Related products
PostgreSQL
CVE-IDS
?
CVE-2023-394178.8Critical
Find out the statistics of the vulnerabilities spreading in your region