Critical Vulnerability Found in PostgreSQL Database System
/ 1 min read
High-severity vulnerability discovered in PostgreSQL. Cybersecurity researchers have identified a critical flaw in the PostgreSQL database system, tracked as CVE-2024-10979, which could enable unprivileged users to alter environment variables, potentially leading to code execution or information disclosure. With a CVSS score of 8.8, the vulnerability affects several PostgreSQL versions and has been addressed in updates. Users are advised to apply the fixes promptly and restrict permissions to mitigate risks associated with this security issue.