CVE-2024-4317 | PostgreSQL up to 14.11/15.6/16.2 pg_stats_ext/pg_stats_ext_exprs authorization

Posted by Angelo Barbosa | May 9, 2024 | CVE

A vulnerability was found in PostgreSQL up to 14.11/15.6/16.2. It has been classified as problematic. Affected is the function pg_stats_ext/pg_stats_ext_exprs. The manipulation leads to missing authorization.

This vulnerability is traded as CVE-2024-4317. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4317 | PostgreSQL up to 14.11/15.6/16.2 pg_stats_ext/pg_stats_ext_exprs authorization

Related Posts

CVE-2024-33423 | CMSimple 5.15 Settings Menu Logout cross site scripting

CVE-2023-50736 | Lexmark CX331adwe Postscript File memory corruption

CVE-2024-50579 | JetBrains YouTrack up to 2024.3.47197 Link cross site scripting

CVE-2024-36461 | Zabbix up to 6.0.30/6.4.15/7.0.0 JavaScript Engine untrusted pointer dereference