Security Advisory

CVE-2023-41115

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-12 00:00:00
Last updated 2024-08-28 17:12:52
Assigner mitre
State PUBLISHED

Description

An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. When using UTL_ENCODE, an authenticated user can read any large object, regardless of that users permissions.