Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/postgresql-18@18.3-1?distro=sid

Type deb

Namespace debian

Name postgresql-18

Version 18.3-1

Qualifiers

distro	sid

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-4d43-twjt-v7hs

vulnerability_id VCID-4d43-twjt-v7hs

summary PostgreSQL oidvector discloses a few bytes of memorymore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2003.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2003.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2003

reference_id

reference_type

scores

value	0.00019
scoring_system	epss
scoring_elements	0.04814
published_at	2026-04-16T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04822
published_at	2026-04-18T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04865
published_at	2026-04-13T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04883
published_at	2026-04-12T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04848
published_at	2026-04-04T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04866
published_at	2026-04-07T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04921
published_at	2026-04-09T12:55:00Z

value	0.00019
scoring_system	epss
scoring_elements	0.04904
published_at	2026-04-11T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06326
published_at	2026-04-24T12:55:00Z

value	0.00023
scoring_system	epss
scoring_elements	0.06308
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2003

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2003
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2003

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/

reference_url

https://www.postgresql.org/support/security/CVE-2026-2003/

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N']

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-12T14:33:29Z/

url

https://www.postgresql.org/support/security/CVE-2026-2003/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2439322
reference_id	2439322
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2439322

reference_url	https://access.redhat.com/errata/RHSA-2026:3730
reference_id	RHSA-2026:3730
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3730

reference_url	https://access.redhat.com/errata/RHSA-2026:3887
reference_id	RHSA-2026:3887
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3887

reference_url	https://access.redhat.com/errata/RHSA-2026:3896
reference_id	RHSA-2026:3896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3896

reference_url	https://access.redhat.com/errata/RHSA-2026:4059
reference_id	RHSA-2026:4059
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4059

reference_url	https://access.redhat.com/errata/RHSA-2026:4063
reference_id	RHSA-2026:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4063

reference_url	https://access.redhat.com/errata/RHSA-2026:4110
reference_id	RHSA-2026:4110
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4110

reference_url	https://access.redhat.com/errata/RHSA-2026:4254
reference_id	RHSA-2026:4254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4254

reference_url	https://access.redhat.com/errata/RHSA-2026:4441
reference_id	RHSA-2026:4441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4441

reference_url	https://access.redhat.com/errata/RHSA-2026:4515
reference_id	RHSA-2026:4515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4515

reference_url	https://access.redhat.com/errata/RHSA-2026:4544
reference_id	RHSA-2026:4544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4544

reference_url	https://access.redhat.com/errata/RHSA-2026:4546
reference_id	RHSA-2026:4546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4546

reference_url	https://access.redhat.com/errata/RHSA-2026:4547
reference_id	RHSA-2026:4547
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4547

reference_url	https://access.redhat.com/errata/RHSA-2026:4548
reference_id	RHSA-2026:4548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4548

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/8072-1/
reference_id	USN-8072-1
reference_type
scores
url	https://usn.ubuntu.com/8072-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.2-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2026-2003

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4d43-twjt-v7hs

url VCID-7asd-nhem-wbbr

vulnerability_id VCID-7asd-nhem-wbbr

summary PostgreSQL pgcrypto heap buffer overflow executes arbitrary codemore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2005.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2005.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2005

reference_id

reference_type

scores

value	0.00028
scoring_system	epss
scoring_elements	0.07719
published_at	2026-04-18T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07785
published_at	2026-04-02T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07744
published_at	2026-04-16T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07831
published_at	2026-04-13T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07832
published_at	2026-04-04T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07788
published_at	2026-04-07T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07846
published_at	2026-04-08T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07865
published_at	2026-04-09T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07844
published_at	2026-04-12T12:55:00Z

value	0.00028
scoring_system	epss
scoring_elements	0.07857
published_at	2026-04-11T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10057
published_at	2026-04-24T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10079
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2005

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/

reference_url

https://www.postgresql.org/support/security/CVE-2026-2005/

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H']

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T04:56:32Z/

url

https://www.postgresql.org/support/security/CVE-2026-2005/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2439326
reference_id	2439326
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2439326

reference_url	https://access.redhat.com/errata/RHSA-2026:3730
reference_id	RHSA-2026:3730
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3730

reference_url	https://access.redhat.com/errata/RHSA-2026:3887
reference_id	RHSA-2026:3887
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3887

reference_url	https://access.redhat.com/errata/RHSA-2026:3896
reference_id	RHSA-2026:3896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3896

reference_url	https://access.redhat.com/errata/RHSA-2026:4024
reference_id	RHSA-2026:4024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4024

reference_url	https://access.redhat.com/errata/RHSA-2026:4059
reference_id	RHSA-2026:4059
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4059

reference_url	https://access.redhat.com/errata/RHSA-2026:4063
reference_id	RHSA-2026:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4063

reference_url	https://access.redhat.com/errata/RHSA-2026:4064
reference_id	RHSA-2026:4064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4064

reference_url	https://access.redhat.com/errata/RHSA-2026:4074
reference_id	RHSA-2026:4074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4074

reference_url	https://access.redhat.com/errata/RHSA-2026:4075
reference_id	RHSA-2026:4075
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4075

reference_url	https://access.redhat.com/errata/RHSA-2026:4110
reference_id	RHSA-2026:4110
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4110

reference_url	https://access.redhat.com/errata/RHSA-2026:4254
reference_id	RHSA-2026:4254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4254

reference_url	https://access.redhat.com/errata/RHSA-2026:4441
reference_id	RHSA-2026:4441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4441

reference_url	https://access.redhat.com/errata/RHSA-2026:4475
reference_id	RHSA-2026:4475
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4475

reference_url	https://access.redhat.com/errata/RHSA-2026:4504
reference_id	RHSA-2026:4504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4504

reference_url	https://access.redhat.com/errata/RHSA-2026:4505
reference_id	RHSA-2026:4505
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4505

reference_url	https://access.redhat.com/errata/RHSA-2026:4506
reference_id	RHSA-2026:4506
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4506

reference_url	https://access.redhat.com/errata/RHSA-2026:4509
reference_id	RHSA-2026:4509
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4509

reference_url	https://access.redhat.com/errata/RHSA-2026:4515
reference_id	RHSA-2026:4515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4515

reference_url	https://access.redhat.com/errata/RHSA-2026:4516
reference_id	RHSA-2026:4516
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4516

reference_url	https://access.redhat.com/errata/RHSA-2026:4518
reference_id	RHSA-2026:4518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4518

reference_url	https://access.redhat.com/errata/RHSA-2026:4524
reference_id	RHSA-2026:4524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4524

reference_url	https://access.redhat.com/errata/RHSA-2026:4528
reference_id	RHSA-2026:4528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4528

reference_url	https://access.redhat.com/errata/RHSA-2026:4544
reference_id	RHSA-2026:4544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4544

reference_url	https://access.redhat.com/errata/RHSA-2026:4546
reference_id	RHSA-2026:4546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4546

reference_url	https://access.redhat.com/errata/RHSA-2026:4547
reference_id	RHSA-2026:4547
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4547

reference_url	https://access.redhat.com/errata/RHSA-2026:4548
reference_id	RHSA-2026:4548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4548

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/8072-1/
reference_id	USN-8072-1
reference_type
scores
url	https://usn.ubuntu.com/8072-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.2-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2026-2005

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7asd-nhem-wbbr

url VCID-b13k-m1w4-1faz

vulnerability_id VCID-b13k-m1w4-1faz

summary PostgreSQL missing validation of multibyte character length executes arbitrary codemore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2006.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2006.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2006

reference_id

reference_type

scores

value	0.00034
scoring_system	epss
scoring_elements	0.09681
published_at	2026-04-18T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09711
published_at	2026-04-16T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09828
published_at	2026-04-13T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09844
published_at	2026-04-12T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.0988
published_at	2026-04-11T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.0975
published_at	2026-04-07T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09874
published_at	2026-04-09T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09821
published_at	2026-04-08T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11733
published_at	2026-04-24T12:55:00Z

value	0.00039
scoring_system	epss
scoring_elements	0.11765
published_at	2026-04-21T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12386
published_at	2026-04-02T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.1243
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2006

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2006
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2006

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/

reference_url

https://www.postgresql.org/support/security/CVE-2026-2006/

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H']

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T04:56:31Z/

url

https://www.postgresql.org/support/security/CVE-2026-2006/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2439324
reference_id	2439324
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2439324

reference_url	https://access.redhat.com/errata/RHSA-2026:3730
reference_id	RHSA-2026:3730
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3730

reference_url	https://access.redhat.com/errata/RHSA-2026:3887
reference_id	RHSA-2026:3887
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3887

reference_url	https://access.redhat.com/errata/RHSA-2026:3896
reference_id	RHSA-2026:3896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3896

reference_url	https://access.redhat.com/errata/RHSA-2026:4024
reference_id	RHSA-2026:4024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4024

reference_url	https://access.redhat.com/errata/RHSA-2026:4059
reference_id	RHSA-2026:4059
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4059

reference_url	https://access.redhat.com/errata/RHSA-2026:4063
reference_id	RHSA-2026:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4063

reference_url	https://access.redhat.com/errata/RHSA-2026:4064
reference_id	RHSA-2026:4064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4064

reference_url	https://access.redhat.com/errata/RHSA-2026:4074
reference_id	RHSA-2026:4074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4074

reference_url	https://access.redhat.com/errata/RHSA-2026:4075
reference_id	RHSA-2026:4075
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4075

reference_url	https://access.redhat.com/errata/RHSA-2026:4110
reference_id	RHSA-2026:4110
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4110

reference_url	https://access.redhat.com/errata/RHSA-2026:4254
reference_id	RHSA-2026:4254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4254

reference_url	https://access.redhat.com/errata/RHSA-2026:4441
reference_id	RHSA-2026:4441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4441

reference_url	https://access.redhat.com/errata/RHSA-2026:4475
reference_id	RHSA-2026:4475
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4475

reference_url	https://access.redhat.com/errata/RHSA-2026:4504
reference_id	RHSA-2026:4504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4504

reference_url	https://access.redhat.com/errata/RHSA-2026:4505
reference_id	RHSA-2026:4505
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4505

reference_url	https://access.redhat.com/errata/RHSA-2026:4506
reference_id	RHSA-2026:4506
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4506

reference_url	https://access.redhat.com/errata/RHSA-2026:4509
reference_id	RHSA-2026:4509
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4509

reference_url	https://access.redhat.com/errata/RHSA-2026:4515
reference_id	RHSA-2026:4515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4515

reference_url	https://access.redhat.com/errata/RHSA-2026:4516
reference_id	RHSA-2026:4516
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4516

reference_url	https://access.redhat.com/errata/RHSA-2026:4518
reference_id	RHSA-2026:4518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4518

reference_url	https://access.redhat.com/errata/RHSA-2026:4524
reference_id	RHSA-2026:4524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4524

reference_url	https://access.redhat.com/errata/RHSA-2026:4528
reference_id	RHSA-2026:4528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4528

reference_url	https://access.redhat.com/errata/RHSA-2026:4544
reference_id	RHSA-2026:4544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4544

reference_url	https://access.redhat.com/errata/RHSA-2026:4546
reference_id	RHSA-2026:4546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4546

reference_url	https://access.redhat.com/errata/RHSA-2026:4547
reference_id	RHSA-2026:4547
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4547

reference_url	https://access.redhat.com/errata/RHSA-2026:4548
reference_id	RHSA-2026:4548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4548

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/8072-1/
reference_id	USN-8072-1
reference_type
scores
url	https://usn.ubuntu.com/8072-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.2-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2026-2006

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b13k-m1w4-1faz

url VCID-fck5-tfaf-5kbx

vulnerability_id VCID-fck5-tfaf-5kbx

summary PostgreSQL CREATE STATISTICS does not check for schema CREATE privilegemore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12817.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12817.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12817

reference_id

reference_type

scores

value	0.00052
scoring_system	epss
scoring_elements	0.16158
published_at	2026-04-21T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.16236
published_at	2026-04-12T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.16102
published_at	2026-04-16T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.1612
published_at	2026-04-18T12:55:00Z

value	0.00052
scoring_system	epss
scoring_elements	0.16169
published_at	2026-04-13T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16954
published_at	2026-04-11T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19009
published_at	2026-04-24T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.2944
published_at	2026-04-08T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29507
published_at	2026-04-02T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29555
published_at	2026-04-04T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.29376
published_at	2026-04-07T12:55:00Z

value	0.0011
scoring_system	epss
scoring_elements	0.2948
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12817

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12817

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/

reference_url

https://www.postgresql.org/support/security/CVE-2025-12817/

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L']

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-13T13:59:49Z/

url

https://www.postgresql.org/support/security/CVE-2025-12817/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2414825
reference_id	2414825
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2414825

reference_url	https://access.redhat.com/errata/RHSA-2025:22728
reference_id	RHSA-2025:22728
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22728

reference_url	https://access.redhat.com/errata/RHSA-2025:23022
reference_id	RHSA-2025:23022
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23022

reference_url	https://access.redhat.com/errata/RHSA-2025:23023
reference_id	RHSA-2025:23023
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23023

reference_url	https://access.redhat.com/errata/RHSA-2026:0262
reference_id	RHSA-2026:0262
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0262

reference_url	https://access.redhat.com/errata/RHSA-2026:0263
reference_id	RHSA-2026:0263
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0263

reference_url	https://access.redhat.com/errata/RHSA-2026:0264
reference_id	RHSA-2026:0264
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0264

reference_url	https://access.redhat.com/errata/RHSA-2026:0265
reference_id	RHSA-2026:0265
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0265

reference_url	https://access.redhat.com/errata/RHSA-2026:0266
reference_id	RHSA-2026:0266
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0266

reference_url	https://access.redhat.com/errata/RHSA-2026:0267
reference_id	RHSA-2026:0267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0267

reference_url	https://access.redhat.com/errata/RHSA-2026:0268
reference_id	RHSA-2026:0268
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0268

reference_url	https://access.redhat.com/errata/RHSA-2026:0269
reference_id	RHSA-2026:0269
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0269

reference_url	https://access.redhat.com/errata/RHSA-2026:0270
reference_id	RHSA-2026:0270
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0270

reference_url	https://access.redhat.com/errata/RHSA-2026:0455
reference_id	RHSA-2026:0455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0455

reference_url	https://access.redhat.com/errata/RHSA-2026:0456
reference_id	RHSA-2026:0456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0456

reference_url	https://access.redhat.com/errata/RHSA-2026:0491
reference_id	RHSA-2026:0491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0491

reference_url	https://access.redhat.com/errata/RHSA-2026:0492
reference_id	RHSA-2026:0492
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0492

reference_url	https://access.redhat.com/errata/RHSA-2026:0493
reference_id	RHSA-2026:0493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0493

reference_url	https://access.redhat.com/errata/RHSA-2026:0519
reference_id	RHSA-2026:0519
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0519

reference_url	https://access.redhat.com/errata/RHSA-2026:0523
reference_id	RHSA-2026:0523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0523

reference_url	https://access.redhat.com/errata/RHSA-2026:0524
reference_id	RHSA-2026:0524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0524

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/7908-1/
reference_id	USN-7908-1
reference_type
scores
url	https://usn.ubuntu.com/7908-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.1-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.1-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.1-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2025-12817

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fck5-tfaf-5kbx

url VCID-kfy3-jgjm-myge

vulnerability_id VCID-kfy3-jgjm-myge

summary PostgreSQL libpq undersizes allocations, via integer wraparoundmore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12818.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12818.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12818

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12305
published_at	2026-04-18T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12405
published_at	2026-04-13T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12416
published_at	2026-04-21T12:55:00Z

value	0.00041
scoring_system	epss
scoring_elements	0.12445
published_at	2026-04-12T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13009
published_at	2026-04-11T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14947
published_at	2026-04-24T12:55:00Z

value	0.00096
scoring_system	epss
scoring_elements	0.26625
published_at	2026-04-08T12:55:00Z

value	0.00096
scoring_system	epss
scoring_elements	0.26731
published_at	2026-04-02T12:55:00Z

value	0.00096
scoring_system	epss
scoring_elements	0.26773
published_at	2026-04-04T12:55:00Z

value	0.00096
scoring_system	epss
scoring_elements	0.26557
published_at	2026-04-07T12:55:00Z

value	0.00096
scoring_system	epss
scoring_elements	0.26676
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12818

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-181-177-1611-1515-1420-and-1323-released-3171/

reference_url

https://www.postgresql.org/support/security/CVE-2025-12818/

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	['AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H']

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-13T13:59:26Z/

url

https://www.postgresql.org/support/security/CVE-2025-12818/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2414826
reference_id	2414826
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2414826

reference_url	https://access.redhat.com/errata/RHSA-2025:22728
reference_id	RHSA-2025:22728
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22728

reference_url	https://access.redhat.com/errata/RHSA-2025:23022
reference_id	RHSA-2025:23022
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23022

reference_url	https://access.redhat.com/errata/RHSA-2025:23023
reference_id	RHSA-2025:23023
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23023

reference_url	https://access.redhat.com/errata/RHSA-2025:23123
reference_id	RHSA-2025:23123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23123

reference_url	https://access.redhat.com/errata/RHSA-2025:23124
reference_id	RHSA-2025:23124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23124

reference_url	https://access.redhat.com/errata/RHSA-2025:23157
reference_id	RHSA-2025:23157
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23157

reference_url	https://access.redhat.com/errata/RHSA-2025:23158
reference_id	RHSA-2025:23158
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23158

reference_url	https://access.redhat.com/errata/RHSA-2026:0262
reference_id	RHSA-2026:0262
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0262

reference_url	https://access.redhat.com/errata/RHSA-2026:0263
reference_id	RHSA-2026:0263
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0263

reference_url	https://access.redhat.com/errata/RHSA-2026:0264
reference_id	RHSA-2026:0264
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0264

reference_url	https://access.redhat.com/errata/RHSA-2026:0265
reference_id	RHSA-2026:0265
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0265

reference_url	https://access.redhat.com/errata/RHSA-2026:0266
reference_id	RHSA-2026:0266
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0266

reference_url	https://access.redhat.com/errata/RHSA-2026:0267
reference_id	RHSA-2026:0267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0267

reference_url	https://access.redhat.com/errata/RHSA-2026:0268
reference_id	RHSA-2026:0268
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0268

reference_url	https://access.redhat.com/errata/RHSA-2026:0269
reference_id	RHSA-2026:0269
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0269

reference_url	https://access.redhat.com/errata/RHSA-2026:0270
reference_id	RHSA-2026:0270
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0270

reference_url	https://access.redhat.com/errata/RHSA-2026:0455
reference_id	RHSA-2026:0455
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0455

reference_url	https://access.redhat.com/errata/RHSA-2026:0456
reference_id	RHSA-2026:0456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0456

reference_url	https://access.redhat.com/errata/RHSA-2026:0458
reference_id	RHSA-2026:0458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0458

reference_url	https://access.redhat.com/errata/RHSA-2026:0491
reference_id	RHSA-2026:0491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0491

reference_url	https://access.redhat.com/errata/RHSA-2026:0492
reference_id	RHSA-2026:0492
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0492

reference_url	https://access.redhat.com/errata/RHSA-2026:0493
reference_id	RHSA-2026:0493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0493

reference_url	https://access.redhat.com/errata/RHSA-2026:0519
reference_id	RHSA-2026:0519
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0519

reference_url	https://access.redhat.com/errata/RHSA-2026:0523
reference_id	RHSA-2026:0523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0523

reference_url	https://access.redhat.com/errata/RHSA-2026:0524
reference_id	RHSA-2026:0524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0524

reference_url	https://access.redhat.com/errata/RHSA-2026:0525
reference_id	RHSA-2026:0525
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0525

reference_url	https://access.redhat.com/errata/RHSA-2026:0594
reference_id	RHSA-2026:0594
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0594

reference_url	https://access.redhat.com/errata/RHSA-2026:0695
reference_id	RHSA-2026:0695
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0695

reference_url	https://access.redhat.com/errata/RHSA-2026:0744
reference_id	RHSA-2026:0744
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0744

reference_url	https://access.redhat.com/errata/RHSA-2026:0745
reference_id	RHSA-2026:0745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0745

reference_url	https://access.redhat.com/errata/RHSA-2026:0746
reference_id	RHSA-2026:0746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0746

reference_url	https://access.redhat.com/errata/RHSA-2026:0835
reference_id	RHSA-2026:0835
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0835

reference_url	https://access.redhat.com/errata/RHSA-2026:0865
reference_id	RHSA-2026:0865
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0865

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/7908-1/
reference_id	USN-7908-1
reference_type
scores
url	https://usn.ubuntu.com/7908-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.1-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.1-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.1-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2025-12818

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kfy3-jgjm-myge

url VCID-npaz-u5a8-17bs

vulnerability_id VCID-npaz-u5a8-17bs

summary PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memorymore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2007.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2007.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2007

reference_id

reference_type

scores

value	0.0002
scoring_system	epss
scoring_elements	0.05248
published_at	2026-04-18T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05241
published_at	2026-04-02T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05246
published_at	2026-04-16T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.053
published_at	2026-04-13T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05273
published_at	2026-04-04T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05298
published_at	2026-04-07T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05332
published_at	2026-04-08T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05354
published_at	2026-04-09T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.0531
published_at	2026-04-12T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05322
published_at	2026-04-11T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.05701
published_at	2026-04-24T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.05666
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2007

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/

reference_url

https://www.postgresql.org/support/security/CVE-2026-2007/

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H']

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-02-12T14:18:10Z/

url

https://www.postgresql.org/support/security/CVE-2026-2007/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2439320
reference_id	2439320
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2439320

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

fixed_packages

url	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.2-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2026-2007

risk_score 3.7

exploitability 0.5

weighted_severity 7.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-npaz-u5a8-17bs

url VCID-ucu8-nb95-hfca

vulnerability_id VCID-ucu8-nb95-hfca

summary PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary codemore details

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2004.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2004.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-2004

reference_id

reference_type

scores

value	0.00048
scoring_system	epss
scoring_elements	0.14715
published_at	2026-04-18T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14921
published_at	2026-04-02T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14707
published_at	2026-04-16T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.1481
published_at	2026-04-13T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14998
published_at	2026-04-04T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14802
published_at	2026-04-07T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14891
published_at	2026-04-08T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14942
published_at	2026-04-09T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14869
published_at	2026-04-12T12:55:00Z

value	0.00048
scoring_system	epss
scoring_elements	0.14907
published_at	2026-04-11T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.18483
published_at	2026-04-24T12:55:00Z

value	0.00059
scoring_system	epss
scoring_elements	0.1859
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-2004

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2004
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2004

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/
reference_id
reference_type
scores
url	https://www.postgresql.org/about/news/postgresql-182-178-1612-1516-and-1421-released-3235/

reference_url

https://www.postgresql.org/support/security/CVE-2026-2004/

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	['AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H']

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-13T04:56:33Z/

url

https://www.postgresql.org/support/security/CVE-2026-2004/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2439325
reference_id	2439325
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2439325

reference_url	https://access.redhat.com/errata/RHSA-2026:3730
reference_id	RHSA-2026:3730
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3730

reference_url	https://access.redhat.com/errata/RHSA-2026:3887
reference_id	RHSA-2026:3887
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3887

reference_url	https://access.redhat.com/errata/RHSA-2026:3896
reference_id	RHSA-2026:3896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3896

reference_url	https://access.redhat.com/errata/RHSA-2026:4024
reference_id	RHSA-2026:4024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4024

reference_url	https://access.redhat.com/errata/RHSA-2026:4059
reference_id	RHSA-2026:4059
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4059

reference_url	https://access.redhat.com/errata/RHSA-2026:4063
reference_id	RHSA-2026:4063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4063

reference_url	https://access.redhat.com/errata/RHSA-2026:4064
reference_id	RHSA-2026:4064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4064

reference_url	https://access.redhat.com/errata/RHSA-2026:4074
reference_id	RHSA-2026:4074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4074

reference_url	https://access.redhat.com/errata/RHSA-2026:4075
reference_id	RHSA-2026:4075
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4075

reference_url	https://access.redhat.com/errata/RHSA-2026:4110
reference_id	RHSA-2026:4110
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4110

reference_url	https://access.redhat.com/errata/RHSA-2026:4254
reference_id	RHSA-2026:4254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4254

reference_url	https://access.redhat.com/errata/RHSA-2026:4441
reference_id	RHSA-2026:4441
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4441

reference_url	https://access.redhat.com/errata/RHSA-2026:4475
reference_id	RHSA-2026:4475
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4475

reference_url	https://access.redhat.com/errata/RHSA-2026:4504
reference_id	RHSA-2026:4504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4504

reference_url	https://access.redhat.com/errata/RHSA-2026:4505
reference_id	RHSA-2026:4505
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4505

reference_url	https://access.redhat.com/errata/RHSA-2026:4506
reference_id	RHSA-2026:4506
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4506

reference_url	https://access.redhat.com/errata/RHSA-2026:4509
reference_id	RHSA-2026:4509
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4509

reference_url	https://access.redhat.com/errata/RHSA-2026:4515
reference_id	RHSA-2026:4515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4515

reference_url	https://access.redhat.com/errata/RHSA-2026:4516
reference_id	RHSA-2026:4516
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4516

reference_url	https://access.redhat.com/errata/RHSA-2026:4518
reference_id	RHSA-2026:4518
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4518

reference_url	https://access.redhat.com/errata/RHSA-2026:4524
reference_id	RHSA-2026:4524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4524

reference_url	https://access.redhat.com/errata/RHSA-2026:4528
reference_id	RHSA-2026:4528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4528

reference_url	https://access.redhat.com/errata/RHSA-2026:4544
reference_id	RHSA-2026:4544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4544

reference_url	https://access.redhat.com/errata/RHSA-2026:4546
reference_id	RHSA-2026:4546
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4546

reference_url	https://access.redhat.com/errata/RHSA-2026:4547
reference_id	RHSA-2026:4547
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4547

reference_url	https://access.redhat.com/errata/RHSA-2026:4548
reference_id	RHSA-2026:4548
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4548

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:8756
reference_id	RHSA-2026:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8756

reference_url	https://usn.ubuntu.com/8072-1/
reference_id	USN-8072-1
reference_type
scores
url	https://usn.ubuntu.com/8072-1/

fixed_packages

url	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.2-1%3Fdistro=sid

url	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
purl	pkg:deb/debian/postgresql-18@18.3-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

aliases CVE-2026-2004

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ucu8-nb95-hfca

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/postgresql-18@18.3-1%3Fdistro=sid

Package Instance