PostgreSQL CVE-2016-2193 Access Control Bypass Vulnerability

description-logoDescription

PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that performs queries as more than one role.

affected-products-logoAffected Applications

PostgreSQL

CVE References

CVE-2016-2193