Security Advisory

CVE-2022-46792

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-08 00:00:00

Last updated 2025-04-23 14:25:42

Assigner mitre

State PUBLISHED

Description

Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. The fixed versions are 2.10.2, 2.11.3, 2.12.1, 2.13.2, 2.14.1, and 2.15.2. (Versions before 2.10.0 are unaffected.)

← Browse all CVEs View on cve.org ↗