4 matches found
CVE-2024-1713
A user who can create objects in a database with plv8 3.2.1 installed is able to cause deferred triggers to execute as the Superuser during autovacuum...
UBUNTU-CVE-2024-1713
A user who can create objects in a database with plv8 3.2.1 installed is able to cause deferred triggers to execute as the Superuser during autovacuum...
CVE-2024-1713
Summary of CVE-2024-1713 (Plv8 Deferred Trigger Privilege Escalation) Affects plv8 version 3.2.1. If a user can create objects in a database, they can cause deferred triggers to execute as the Superuser during autovacuum. This is a privilege-escalation scenario with impact on confidentiality, int...
PT-2024-18244 · Plv8 · Plv8
Name of the Vulnerable Software and Affected Versions: plv8 version 3.2.1 Description: A user who can create objects in a database with plv8 installed is able to cause deferred triggers to execute as the Superuser during autovacuum. Recommendations: For plv8 version 3.2.1, consider restricting...