CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/04/30 8:48 p.m.•1 views

CVE-2026-3259

A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to potentially disclose sensitive data using a crafted materialized view that triggers a runtime error...

7.1CVSS5.2AI score0.00054EPSS

EUVD•added 2026/04/23 12:31 p.m.•2 views

EUVD-2026-25203

NVD•added 2026/04/23 10:16 a.m.•1 views

CVE-2026-3259

7.1CVSS0.00054EPSS

ATTACKERKB•added 2026/04/23 8:35 a.m.•1 views

CVE-2026-3259

CVE•added 2026/04/23 8:35 a.m.•6 views

CVE-2026-3259

CVE-2026-3259 describes a vulnerability in Google Cloud BigQuery’s materialized view refresh mechanism where an authenticated user could trigger a runtime error that reveals sensitive information in error messages. Affected component: BigQuery Materialized View Refresh; root cause: error handling...

Vulnrichment•added 2026/04/23 8:35 a.m.•1 views

CVE-2026-3259 Sensitive Data Disclosure in BigQuery via Materialized View Error Messages

7.1CVSS5.2AI score0.00054EPSS

Cvelist•added 2026/04/23 8:35 a.m.•29 views

CVE-2026-3259 Sensitive Data Disclosure in BigQuery via Materialized View Error Messages

7.1CVSS0.00054EPSS

Positive Technologies•added 2026/04/23 12:0 a.m.•2 views

PT-2026-34647

CNNVD•added 2026/04/23 12:0 a.m.•2 views

Google BigQuery 安全漏洞

Google BigQuery is a cloud data warehouse service provided by Google Inc., designed for large-scale data analysis and high-performance query processing. There is a security vulnerability in Google BigQuery. This vulnerability stems from the materialized view refresh mechanism, which generates err...

7.1CVSS5.8AI score0.00054EPSS

OSV•added 2026/04/03 1:27 p.m.•0 views

JLSEC-2026-46

Late privilege drop in REFRESH MATERIALIZED VIEW CONCURRENTLY in PostgreSQL allows an object creator to execute arbitrary SQL functions as the command issuer. The command intends to run SQL functions as the owner of the materialized view, enabling safe refresh of untrusted materialized views. The...

8CVSS7.3AI score0.00753EPSS

Exploits0References7

OSV•added 2026/04/03 1:27 p.m.•1 views

JLSEC-2026-37

A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH MATERIALIZED VIEW, CLUSTER, and pgamcheck commands activated relevant protections too late or no...

8.8CVSS7.4AI score0.02263EPSS

Exploits0References12

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : postgresql:15 (AXSA:2024-7569:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7569:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

8CVSS6AI score0.00753EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : postgresql:13 (AXSA:2024-7568:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7568:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

8CVSS8.2AI score0.00753EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : postgresql:10 (AXSA:2024-7566:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7566:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

8CVSS8.8AI score0.00753EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•0 views

MiracleLinux 8 : postgresql:12 (AXSA:2024-7567:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7567:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

8CVSS8.2AI score0.00753EPSS

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 9 : postgresql-13.14-1.el9_3 (AXSA:2024-7559:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7559:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

8CVSS6AI score0.00753EPSS

Tenable Nessus•added 2025/12/27 12:0 a.m.•3 views

NewStart CGSL MAIN 7.02 : libpq Multiple Vulnerabilities (NS-SA-2025-0255)

The remote NewStart CGSL host, running version MAIN 7.02, has libpq packages installed that are affected by multiple vulnerabilities: - Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database user to change sensitive process environment variables e.g. PATH...

8.8CVSS8.4AI score0.06356EPSS

Exploits1References11

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-16762

Malicious code in bioql PyPI...

8CVSS7.4AI score0.00753EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-45635

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00062EPSS