Searching
..

Click anywhere to stop

KLA63867
OSI vulnerability in PostgreSQL

Updated: 02/12/2024
Detect date
?
02/08/2024
Severity
?
High
Description

Privilege escalation vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code, obtain sensitive information, cause denial of service.

Affected products

PostgreSQL 15.x earlier than 15.6
PostgreSQL 13.x earlier than 13.14
PostgreSQL 12.x earlier than 12.18
PostgreSQL 14.x earlier than 14.11

Solution

Update to the latest version
Download PostgreSQL

Original advisories

CVE-2024-0985: PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQL

Impacts
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

PE 
[?]
Related products
PostgreSQL
CVE-IDS
?
CVE-2024-09855.0Warning
Find out the statistics of the vulnerabilities spreading in your region