CVE-2023-39418
LOWPostgreSQL 15.0-15.3 - Insufficient Granularity of Access Control via MERGE Command
Title source: llmDescription
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows.
References (10)
Core 10
Core References
Mailing List, Patch
https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=cb2ae5741f2458a474ed3c31458d242e678ff229
Vendor Advisory
https://www.postgresql.org/support/security/CVE-2023-39418/
Vendor Advisory
https://security.netapp.com/advisory/ntap-20230915-0002/
Third Party Advisory
https://www.debian.org/security/2023/dsa-5553
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2023:7785
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2023:7883
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2023:7884
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2023:7885
Third Party Advisory vdb-entry
x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2023-39418
Issue Tracking, Patch, Third Party Advisory issue-tracking
x_refsource_redhat
https://bugzilla.redhat.com/show_bug.cgi?id=2228112
Scores
CVSS v3
3.1
EPSS
0.0096
EPSS Percentile
56.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-1220
Status
published
Products (4)
debian/debian_linux
12.0
postgresql/postgresql
15.0 - 15.4
redhat/enterprise_linux
8.0
redhat/enterprise_linux
9.0
Published
Aug 11, 2023
Tracked Since
Feb 18, 2026