Security Advisory

CVE-2025-11060

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-26 12:01:22

Last updated 2025-11-07 19:42:32

Assigner redhat

State PUBLISHED

Description

A flaw was found in the live query subscription mechanism of the database engine. This vulnerability allows record or guest users to observe unauthorized records within the same table, bypassing access controls, via crafted LIVE SELECT subscriptions when other users alter or delete records.

← Browse all CVEs View on cve.org ↗