CVE-2016-2193
HIGHPostgreSQL < 9.5.2 - Unauthenticated Row-Security Bypass via Cached Plans
Title source: llmDescription
PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that performs queries as more than one role.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
http://www.postgresql.org/docs/current/static/release-9-5-2.html
Patch, Vendor Advisory x_refsource_confirm
http://www.postgresql.org/about/news/1656/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1035468
Various Sources x_refsource_confirm
http://git.postgresql.org/gitweb/?p=postgresql.git%3Ba=commitdiff%3Bh=db69e58a0642ef7fa46d62f6c4cf2460c3a1b41b
Scores
CVSS v3
7.5
EPSS
0.0153
EPSS Percentile
81.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-254
Status
published
Products (2)
postgresql/postgresql
9.5
postgresql/postgresql
9.5.1
Published
Apr 11, 2016
Tracked Since
Feb 18, 2026