Security Advisory

CVE-2024-4545

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-09 18:12:18

Last updated 2024-08-01 20:47:40

Assigner EDB

State PUBLISHED

Description

All versions of EnterpriseDB Postgres Advanced Server (EPAS) from 15.0 prior to 15.7.0 and from 16.0 prior to 16.3.0 may allow users using edbldr to bypass role permissions from pg_read_server_files. This could allow low privilege users to read files to which they would not otherwise have access.

← Browse all CVEs View on cve.org ↗