CVE-2026-6472

MEDIUM CVSS 5.4 View on NVD ↗

Description

Missing authorization in PostgreSQL CREATE TYPE allows an object creator to hijack other queries that use search_path to find user-defined types, including extension-defined types. That is to say, the victim will execute arbitrary SQL functions of the attacker's choice. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

References

https://www.postgresql.org/support/security/CVE-2026-6472/

Published: May 14, 2026 14:16 UTC Modified: May 14, 2026 16:21 UTC