Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

postgresql — Vulnerabilities & Security Advisories 72

All 72 CVE vulnerabilities found in postgresql, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE IDTitleCVSSSeverityPaused
CVE-2026-2007 PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory CWE-122 8.2 High2026-02-12
CVE-2026-2006 PostgreSQL missing validation of multibyte character length executes arbitrary code CWE-129 8.8 High2026-02-12
CVE-2026-2005 PostgreSQL pgcrypto heap buffer overflow executes arbitrary code CWE-122 8.8 High2026-02-12
CVE-2026-2004 PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code CWE-1287 8.8 High2026-02-12
CVE-2026-2003 PostgreSQL oidvector discloses a few bytes of memory CWE-1287 4.3 Medium2026-02-12
CVE-2025-12818 PostgreSQL libpq undersizes allocations, via integer wraparound CWE-190 5.9 Medium2025-11-13
CVE-2025-12817 PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege CWE-862 3.1 Low2025-11-13
CVE-2025-8715 PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server CWE-93 8.8 High2025-08-14
CVE-2025-8714 PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client CWE-829 8.8 High2025-08-14
CVE-2025-8713 PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table CWE-1230 3.1 Low2025-08-14
CVE-2025-4207 PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation CWE-126 5.9 Medium2025-05-08
CVE-2025-1094 PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CWE-149 8.1 High2025-02-13
CVE-2024-10979 PostgreSQL PL/Perl environment variable changes execute arbitrary code CWE-15 8.8 High2024-11-14
CVE-2024-10978 PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID CWE-266 4.2 Medium2024-11-14
CVE-2024-10977 PostgreSQL libpq retains an error message from man-in-the-middle CWE-348 3.1 Low2024-11-14
CVE-2024-10976 PostgreSQL row security below e.g. subqueries disregards user ID changes CWE-1250 4.2 Medium2024-11-14
CVE-2024-7348 PostgreSQL relation replacement during pg_dump executes arbitrary SQL CWE-367 8.8 High2024-08-08
CVE-2024-4317 PostgreSQL pg_stats_ext and pg_stats_ext_exprs lack authorization checks CWE-862 3.1 Low2024-05-09
CVE-2024-0985 PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQL CWE-271 8.0 High2024-02-08
CVE-2023-2455 PostgreSQL 安全漏洞 CWE-20 9.1 -2023-06-09
CVE-2023-2454 PostgreSQL 安全漏洞 CWE-20 6.7 -2023-06-09
CVE-2022-41862 PostgreSQL 安全漏洞 CWE-200 3.7 -2023-03-03
CVE-2022-1552 PostgreSQL 权限许可和访问控制问题漏洞 CWE-459 8.8 -2022-08-31
CVE-2022-2625 PostgreSQL 安全漏洞 CWE-915 7.1 -2022-08-18
CVE-2021-23214 PostgreSQL SQL注入漏洞 CWE-89 8.1 -2022-03-04
CVE-2021-3677 PostgreSQL 信息泄露漏洞 CWE-200 6.5 -2022-03-02
CVE-2021-23222 PostgreSQL 安全漏洞 CWE-522 5.9 -2022-03-02
CVE-2021-32028 PostgreSQL 信息泄露漏洞 CWE-200 6.5 -2021-10-11
CVE-2021-32029 PostgreSQL 缓冲区错误漏洞 CWE-200 6.5 -2021-10-08
CVE-2021-32027 PostgreSQL 输入验证错误漏洞 CWE-190 8.8 -2021-06-01

All 72 known CVE vulnerabilities affecting postgresql with full Chinese analysis, references, and POCs where available.