PT-2023-18723 · Pg Ivm · Pg Ivm

Name of the Vulnerable Software and Affected Versions: pg ivm versions prior to 1.5.1 Description: An information disclosure issue exists where an Incrementally Maintainable Materialized View IMMV created by pg ivm may reflect rows with Row-Level Security that the owner of the IMMV should not hav...

CVE-2023-23554

Uncontrolled search path element vulnerability exists in pgivm versions prior to 1.5.1. When refreshing an IMMV, pgivm executes functions without specifying schema names. Under certain conditions, pgivm may be tricked to execute unexpected functions from other schemas with the IMMV owner's...