CVE-2023-39418

LOW

PostgreSQL - Privilege Escalation

Title source: llm

Description

A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows.

References (10)

[Mailing List, Patch] https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=cb2ae5741f2458a474ed3c31458d242e678ff229

[Vendor Advisory] https://www.postgresql.org/support/security/CVE-2023-39418/

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20230915-0002/

[Third Party Advisory] https://www.debian.org/security/2023/dsa-5553

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2023:7785

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2023:7883

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2023:7884

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2023:7885

[Third Party Advisory] https://access.redhat.com/security/cve/CVE-2023-39418

[Issue Tracking, Patch, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=2228112

Scores

CVSS v3 3.1

EPSS 0.0044

EPSS Percentile 63.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-1220

Status published

Products (4)

debian/debian_linux 12.0

postgresql/postgresql 15.0 - 15.4

redhat/enterprise_linux 8.0

redhat/enterprise_linux 9.0

Published Aug 11, 2023

Tracked Since Feb 18, 2026