CVE-2024-10976 — Improper Preservation of Consistency Between Independent Representations of Shared State in Postgresql

CWE-1250 — Improper Preservation of Consistency Between Independent Representations of Shared State11 documents8 sources

Severity

5.4MEDIUMNVD

CNA7.5OSV7.5

EPSS

1.1%

top 21.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Postgresql Debian Postgresql-13 Debian Postgresql-15 +5 more

Timeline

PublishedNov 14

Latest updateMar 19

Description

Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invoker view, or SQL-language function references a table with a row-level security policy. This has the same consequences as the two earlier CVEs. That is to say, it leads to potentially incorrect policies b…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.5

Affected Packages9 packages

▶debiandebian/postgresql-13< postgresql-13 13.17-0+deb11u1 (bullseye)

▶debiandebian/postgresql-15< postgresql-13 13.17-0+deb11u1 (bullseye)

▶debiandebian/postgresql-17< postgresql-13 13.17-0+deb11u1 (bullseye)

▶CVEListV5postgresql/postgresql17 — 17.1+5

▶NVDpostgresql/postgresql12.0 — 12.21+5

🔴Vulnerability Details

OSV

postgresql-9.5 vulnerabilities↗2025-03-19

▶

OSV

postgresql-12, postgresql-14, postgresql-16 vulnerabilities↗2024-12-02

▶

GHSA

GHSA-9cv8-8vgq-fg45: Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended↗2024-11-14

▶

CVEList

PostgreSQL row security below e.g. subqueries disregards user ID changes↗2024-11-14

▶

OSV

CVE-2024-10976: Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended↗2024-11-14

▶

📋Vendor Advisories

Ubuntu

PostgreSQL vulnerabilities↗2025-03-19

▶

Ubuntu

PostgreSQL vulnerabilities↗2024-12-02

▶

Red Hat

postgresql: PostgreSQL row security below e.g. subqueries disregards user ID changes↗2024-11-14

▶

Microsoft

PostgreSQL row security below e.g. subqueries disregards user ID changes↗2024-11-12

▶

Debian

CVE-2024-10976: postgresql-13 - Incomplete tracking in PostgreSQL of tables with row security allows a reused qu...↗2024

▶