CVE-2021-32028

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-32028

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-32028.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-32028

Aliases

BIT-postgresql-2021-32028

Downstream

ALPINE-CVE-2021-32028

DEBIAN-CVE-2021-32028

DLA-2662-1

DSA-4915-1

OESA-2021-1439

OESA-2022-1706

RHSA-2021:2360

RHSA-2021:2361

RHSA-2021:2372

RHSA-2021:2375

RHSA-2021:2389

RHSA-2021:2390

RHSA-2021:2391

RHSA-2021:2392

RHSA-2021:2393

RHSA-2021:2394

RHSA-2021:2395

RHSA-2021:2396

SUSE-SU-2021:1782-1

SUSE-SU-2021:1783-1

SUSE-SU-2021:1784-1

SUSE-SU-2021:1785-1

SUSE-SU-2021:1785-2

SUSE-SU-2021:1970-1

SUSE-SU-2021:1994-1

SUSE-SU-2021:2777-1

SUSE-SU-2021:3481-1

SUSE-SU-2022:2958-1

UBUNTU-CVE-2021-32028

USN-4972-1

openSUSE-SU-2021:0894-1

openSUSE-SU-2021:1785-1

openSUSE-SU-2021:1970-1

openSUSE-SU-2021:1994-1

openSUSE-SU-2024:11184-1

openSUSE-SU-2024:11185-1

openSUSE-SU-2024:11186-1

openSUSE-SU-2024:11187-1

openSUSE-SU-2024:12387-1

openSUSE-SU-2024:13243-1

openSUSE-SU-2024:14360-1

Related

Published

2021-10-11T17:15:07Z

Modified

2024-11-21T06:06:44Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.

References

Affected packages