Lucene search

K
cvelistRedhatCVELIST:CVE-2021-20229
HistoryFeb 23, 2021 - 5:40 p.m.

CVE-2021-20229

2021-02-2317:40:53
CWE-863
redhat
www.cve.org

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.9%

A flaw was found in PostgreSQL in versions before 13.2. This flaw allows a user with SELECT privilege on one column to craft a special query that returns all columns of the table. The highest threat from this vulnerability is to confidentiality.

CNA Affected

[
  {
    "product": "PostgreSQL",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "postgresql 13.2, postgresql 12.6, postgresql 11.11, postgresql 10.16, postgresql 9.6.21, postgresql 9.5.25"
      }
    ]
  }
]