CVE-2023-5870 in PostgreSQLinformation

Résumé

par MITRE • 11/12/2023

A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!