Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Information disclosure vulnerability exists in pg_ivm versions prior to 1.5.1. An Incrementally Maintainable Materialized View (IMMV) created by pg_ivm may reflect rows with Row-Level Security that the owner of the IMMV should not have access to. As a result, information in tables protected by Row-Level Security may be retrieved by a user who is not authorized to access it.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
pg_ivm 安全漏洞
Vulnerability Description
pg_ivm是SRA OSS开源的一个库。作为 PostgreSQL 扩展的 IVM(增量视图维护)实现。 pg_ivm 1.5.1之前版本存在安全漏洞,该漏洞源于存在敏感信息泄露。攻击者利用该漏洞可以访问受安全保护的表中信息。
CVSS Information
N/A
Vulnerability Type
N/A