CVE-2026-6475 | PostgreSQL up to 18.3 .bashrc shared_preload_libraries symlink

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability was found in PostgreSQL up to 14.22/15.17/16.13/17.9/18.3 and classified as critical. This impacts the function shared_preload_libraries in the library /var/lib/postgres/.bashrc. Such manipulation leads to symlink following.

This vulnerability is listed as CVE-2026-6475. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-6475 | PostgreSQL up to 18.3 .bashrc shared_preload_libraries symlink

Post correlati

CVE-2024-27998 | UkrSolution Barcode Scanner with Inventory & Order Manager Plugin cross site scripting

CVE-2025-14489 | RealDefense SUPERAntiSpyware Local Privilege Escalation (ZDI-25-1165)

CVE-2026-30905 | Zoom Workplace VDI Plugin up to 6.6.9 on Windows file inclusion

CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting