CVE-2023-5870 in PostgreSQLИнформация

Сводка

по MITRE • 11.12.2023

A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would affect that specific background worker only. This issue may allow a remote high privileged user to launch a denial of service (DoS) attack.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Резервировать

31.10.2023

Раскрытие

11.12.2023

Модерация

принято

Вход

VDB-244949

EPSS

0.02555

KEV

Нет

Деятельности

Очень низкий

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!