6 matches found
JLSEC-2026-34
An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11. A user having UPDATE permission but not SELECT permission to a particular column could craft queries which, under some circumstances, might disclose values from that column in error messages. A...
SUSE CVE-2021-3393
An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11. A user having UPDATE permission but not SELECT permission to a particular column could craft queries which, under some circumstances, might disclose values from that column in error messages. A...
postgresql: Partition constraint violation errors leak values of denied columns
An information leak was discovered in postgresql. A user having UPDATE permission but not SELECT permission to a particular column could craft queries which, under some circumstances, might disclose values from that column in error messages. An attacker could use this flaw to obtain information...
DEBIAN-CVE-2021-3393
An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11. A user having UPDATE permission but not SELECT permission to a particular column could craft queries which, under some circumstances, might disclose values from that column in error messages. A...
PT-2021-1982 · Unknown +10 · Postgresql +9
Name of the Vulnerable Software and Affected Versions: postgresql versions prior to 13.2 postgresql versions prior to 12.6 postgresql versions prior to 11.11 Description: An information leak was discovered in postgresql. A user with UPDATE permission but not SELECT permission to a particular colu...
IBM DB2 universal database protection bypass
User with only SELECT permissions can can insert, update or delete records...