CVE-2016-2193

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2016-2193

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-2193.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2016-2193

Downstream

openSUSE-SU-2024:10273-1

Related

Published

2016-04-11T15:59:04.500Z

Modified

2025-11-22T12:44:21.638795Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that performs queries as more than one role.

References

Affected packages

Git / git.postgresql.org/git/postgresql.git

Affected ranges

Type: GIT
Repo: https://git.postgresql.org/git/postgresql.git
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

616eaa396a9bf82d8208a79367d784590be9370d

Last affected

cdd4ed5449bf317cc71b45a8deee0173822e7592

Affected versions

Other

PG95-1_01

REL6_1

REL6_1_1

REL6_2

REL6_2_1

REL6_3

REL6_3_2

REL6_5

REL7_0

REL7_1

REL7_1_BETA

REL7_1_BETA2

REL7_1_BETA3

REL7_2

REL7_2_BETA1

REL7_2_BETA2

REL7_2_BETA3

REL7_2_BETA4

REL7_2_BETA5

REL7_2_RC1

REL7_2_RC2

REL7_4_BETA1

REL7_4_BETA2

REL7_4_BETA3

REL7_4_BETA4

REL7_4_BETA5

REL7_4_RC1

REL8_0_0

REL8_0_0BETA1

REL8_0_0BETA2

REL8_0_0BETA3

REL8_0_0BETA4

REL8_0_0BETA5

REL8_0_0RC1

REL8_0_0RC2

REL8_0_0RC3

REL8_0_0RC4

REL8_0_0RC5

REL8_1_0

REL8_1_0BETA1

REL8_1_0BETA2

REL8_1_0BETA3

REL8_1_0BETA4

REL8_1_0RC1

REL8_2_0

REL8_2_BETA1

REL8_2_BETA2

REL8_2_BETA3

REL8_2_RC1

REL8_3_0

REL8_3_BETA1

REL8_3_BETA2

REL8_3_BETA3

REL8_3_BETA4

REL8_3_RC1

REL8_3_RC2

REL8_4_0

REL8_4_BETA1

REL8_4_BETA2

REL8_4_RC1

REL8_4_RC2

REL9_0_ALPHA5

REL9_0_BETA1

REL9_0_BETA2

REL9_0_BETA3

REL9_1_ALPHA1

REL9_1_ALPHA2

REL9_1_ALPHA3

REL9_1_ALPHA4

REL9_1_ALPHA5

REL9_1_BETA1

REL9_1_BETA2

REL9_2_BETA1

REL9_2_BETA2

REL9_3_BETA1

REL9_4_BETA1

REL9_5_0

REL9_5_1

REL9_5_ALPHA1

REL9_5_ALPHA2

REL9_5_BETA1

REL9_5_BETA2

REL9_5_RC1

Release_1_0_2

Release_2_0

Release_2_0_0

release-6-3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-2193.json"