Your submission was sent successfully! Close

CVE-2021-20229

Published: 23 February 2021

A flaw was found in PostgreSQL in versions before 13.2. This flaw allows a user with SELECT privilege on one column to craft a special query that returns all columns of the table. The highest threat from this vulnerability is to confidentiality.

Priority

Medium

CVSS 3 base score: 4.3

Status

Package Release Status
postgresql-13
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

groovy Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (13.2-1)
xenial Does not exist