CVE-2026-6475 | PostgreSQL up to 18.3 .bashrc shared_preload_libraries symlink

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability was found in PostgreSQL up to 14.22/15.17/16.13/17.9/18.3 and classified as critical. This impacts the function shared_preload_libraries in the library /var/lib/postgres/.bashrc. Such manipulation leads to symlink following.

This vulnerability is listed as CVE-2026-6475. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-6475 | PostgreSQL up to 18.3 .bashrc shared_preload_libraries symlink

Post correlati

CVE-2024-3266 | Bold Page Builder Plugin up to 4.8.8 on WordPress Widget URL Attribute cross site scripting

CVE-2025-59695 | Entrust nShield Connect XC/nShield 5c/nShield HSMi Chassis Management Board improper authentication

CVE-2025-40701 | Sote Soteshop 8.3.4 URL /adsTracker/checkAds ID cross site scripting

CVE-2025-62613 | steveseguin vdo.ninja up to 28.3 examples/control.html room cross site scripting (GHSA-mp9c-cpch-x73c)