Posting Date: 2026/05/29
【Vulnerability Alert】11 High-Risk Security Vulnerabilities Found in PostgreSQL, Please Verify and Patch Immediately
- Subject: 【Vulnerability Alert】11 High-Risk Security Vulnerabilities Found in PostgreSQL, Please Verify and Patch Immediately
- Description:
- Forwarded from National Information Security Analysis Center Security Alert NISAC-200-202605-00000011
- Researchers have discovered 11 high-risk security vulnerabilities in PostgreSQL (CVE-2026-6472 to CVE-2026-6479, CVE-2026-6575, CVE-2026-6637, and CVE-2026-6638). The vulnerability types include Stack-based Buffer Overflow, SQL Injection, and Integer Wraparound, among others. The most severe of these could allow a remote attacker with standard privileges to execute arbitrary code. Please verify and patch as soon as possible.
- Affected Platforms:
- PostgreSQL version 14
- PostgreSQL version 15
- PostgreSQL version 16
- PostgreSQL version 17
- PostgreSQL version 18
- Recommended Actions:
- The vendor has released security updates for these vulnerabilities. Please refer to the official announcement to perform the update. URL as follows: https://www.postgresql.org/about/news/postgresql-184-1710-1614-1518-and-1423-released-3297/
Computer and Communication Center
Network Systems Division
