CVE-2026-2005
published 2026-02-12CVE-2026-2005: Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions…
PriorityP261high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.21%
64.5th percentile
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | httpd | — | — |
| debian | postgresql-13 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-15 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-17 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| debian | postgresql-18 | < postgresql-13 13.23-0+deb11u2 (bullseye) | postgresql-13 13.23-0+deb11u2 (bullseye) |
| postgresql | postgresql | < 14.21 | 14.21 |
| postgresql | postgresql | >= 14.0 < 14.21 | 14.21 |
| postgresql | postgresql | >= 15 < 15.16 | 15.16 |
| postgresql | postgresql | >= 15.0 < 15.16 | 15.16 |
| postgresql | postgresql | >= 16 < 16.12 | 16.12 |
| postgresql | postgresql | >= 16.0 < 16.12 | 16.12 |
| postgresql | postgresql | >= 17 < 17.8 | 17.8 |
| postgresql | postgresql | >= 17.0 < 17.8 | 17.8 |
| postgresql | postgresql | >= 18 < 18.2 | 18.2 |
| postgresql | postgresql | >= 18.0 < 18.2 | 18.2 |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2026-2005 is a heap buffer overflow in the PostgreSQL pgcrypto extension. Detection should focus on unexpected code execution or crashes originating from the pgcrypto module in PostgreSQL processes. ↗
- →The vulnerability is exploitable by a 'ciphertext provider', meaning the attack vector involves supplying crafted ciphertext input to pgcrypto functions. Monitor for anomalous or oversized ciphertext values passed to pgcrypto decrypt functions. ↗
- ·Affected versions are PostgreSQL 14 through 18.1 and earlier patch releases. Fixed versions are 18.2, 17.8, 16.12, 15.16, and 14.21. Ensure the running PostgreSQL version is checked against these thresholds. ↗
- ·No public exploit is currently available and the CVE is not listed in CISA KEV, reducing immediate exploitation risk, but the EPSS percentile of 7.8 indicates some probability of future exploitation. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
vendor_apache5.4LOW
vendor_ubuntu4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
PostgreSQL up to 18.1 pgcrypto heap-based overflow (Nessus ID 298907 / WID-SEC-2026-0409)
vuldb·2026-07-01·CVSS 8.8
CVE-2026-2005 [HIGH] PostgreSQL up to 18.1 pgcrypto heap-based overflow (Nessus ID 298907 / WID-SEC-2026-0409)
A vulnerability identified as critical has been detected in PostgreSQL up to 14.20/15.15/16.11/17.7/18.1. This issue affects some unknown processing of the component pgcrypto. The manipulation leads to heap-based buffer overflow.
This vulnerability is uniquely identified as CVE-2026-2005. The attack is possible to be carried out remotely. No exploit exists.
You should upgrade the affected component.
OSV
postgresql-14, postgresql-16, postgresql-17 vulnerabilities
osv·2026-03-04·CVSS 4.3
CVE-2026-2003 [MEDIUM] postgresql-14, postgresql-16, postgresql-17 vulnerabilities
postgresql-14, postgresql-16, postgresql-17 vulnerabilities
Altan Birler discovered that PostgreSQL incorrectly validated oidvector
types. An attacker could possibly use this issue to obtain a few bytes of
sensitive information. (CVE-2026-2003)
Daniel Firer discovered that PostgreSQL incorrectly validated input in the
intarray extension. An attacker could possibly use this issue to execute
arbitrary code. (CVE-2026-2004)
It was dicovered that PosgreSQL incorrectly handled certain pgcrypto memory
operations. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2026-2005)
Paul Gerste and Moritz Sanft discovered that PostgreSQL incorrectly
validated multibyte character lengths. An attacker could possibly use this
issue to execute arbitrary code. (CVE-2026-2006)
OSV
CVE-2026-2005: Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database
osv·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005: Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
GHSA
GHSA-hgmp-6hmc-prfc: Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database
ghsa_unreviewed·2026-02-12
CVE-2026-2005 [HIGH] CWE-122 GHSA-hgmp-6hmc-prfc: Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Ubuntu
PostgreSQL vulnerabilities
vendor_ubuntu·2026-03-04·CVSS 4.3
CVE-2026-2003 [MEDIUM] PostgreSQL vulnerabilities
Title: PostgreSQL vulnerabilities
Summary: Several security issues were fixed in PostgreSQL.
Altan Birler discovered that PostgreSQL incorrectly validated oidvector
types. An attacker could possibly use this issue to obtain a few bytes of
sensitive information. (CVE-2026-2003)
Daniel Firer discovered that PostgreSQL incorrectly validated input in the
intarray extension. An attacker could possibly use this issue to execute
arbitrary code. (CVE-2026-2004)
It was dicovered that PosgreSQL incorrectly handled certain pgcrypto memory
operations. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2026-2005)
Paul Gerste and Moritz Sanft discovered that PostgreSQL incorrectly
validated multibyte character lengths. An attacker could possibly use this
issue to execute arbi
Red Hat
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
vendor_redhat·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CWE-120 postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
A heap based buffer overflow flaw has been discovered in PostgreSQL. This Heap buffer overflow is in the `pgcrypto` component and allows a ciphertext provider to execute arbitrary code as the operating system user running the database.
Mitigation: Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Package: p
Debian
CVE-2026-2005: postgresql-13 - Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to exec...
vendor_debian·2026·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005: postgresql-13 - Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to exec...
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Scope: local
bullseye: resolved (fixed in 13.23-0+deb11u2)
Citrix
Citrix Security Bulletin CTX107705
vendor_citrix·CVSS 7.5
CVE-2005-3134 [HIGH] Citrix Security Bulletin CTX107705
Citrix Security Bulletin CTX107705
CVE References: CVE-2005-3134, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Apache
Apache httpd: CVE-2005-3357
vendor_apache·CVSS 5.4
CVE-2005-3357 [LOW] Apache httpd: CVE-2005-3357
Apache httpd: CVE-2005-3357
A NULL pointer dereference flaw in mod_ssl was discovered affecting server configurations where an SSL virtual host is configured with access control and a custom 400 error document. A remote attacker could send a carefully crafted request to trigger this issue which would lead to a crash. This crash would only be a denial of service if using the worker MPM. Reported to security team 2005-12-05 Issue public 2005-12-12 Update 2.2.2 released 2006-05-01 Update 2.0.58 released 2006-05-01 Affects 2.2.0, 2.0.55, 2.0.54, 2.0.53, 2.0.52, 2.0.51, 2.0.50, 2.0.49, 2.0.48, 2.0.47, 2.0.46, 2.0.45, 2.0.44, 2.0.43, 2.0.42, 2.0.40, 2.0.39, 2.0.37, 2.0.36, 2.0.35 Copyright © 1997-2026 The Apache Software Foundation. Apache HTTP Server, Apache, the Apache logo and the Apache HTTP
Citrix
Citrix Security Bulletin CTX105574
vendor_citrix·CVSS 7.5
CVE-2005-0821 [HIGH] Citrix Security Bulletin CTX105574
Citrix Security Bulletin CTX105574
CVE References: CVE-2005-0821, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX105762
vendor_citrix·CVSS 2.1
CVE-2005-0822 [LOW] Citrix Security Bulletin CTX105762
Citrix Security Bulletin CTX105762
CVE References: CVE-2005-0822, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX108208
vendor_citrix·CVSS 4.3
CVE-2005-3971 [MEDIUM] Citrix Security Bulletin CTX108208
Citrix Security Bulletin CTX108208
CVE References: CVE-2005-3971, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX108108
vendor_citrix·CVSS 2.1
CVE-2005-4412 [LOW] Citrix Security Bulletin CTX108108
Citrix Security Bulletin CTX108108
CVE References: CVE-2005-4412, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
Citrix
Citrix Security Bulletin CTX108354
vendor_citrix·CVSS 7.5
CVE-2005-3652 [HIGH] Citrix Security Bulletin CTX108354
Citrix Security Bulletin CTX108354
CVE References: CVE-2005-3652, CVE-2025-12101, CVE-2025-62626, CVE-2026-23554, CVE-2026-3055, CVE-2026-4368, CVE-2026-4397
Affected Products: Citrix ADM, Citrix Hypervisor, Citrix Virtual Apps and Desktops, Endpoint Management, NetScaler ADC, NetScaler Gateway, XenServer
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-11789 389-ds-base: 389-ds-base: SMD5 password storage plugin salt length integer underflow crash
bugzilla·2026-06-05·CVSS 5.7
CVE-2026-11789 [MEDIUM] CVE-2026-11789 389-ds-base: 389-ds-base: SMD5 password storage plugin salt length integer underflow crash
CVE-2026-11789 389-ds-base: 389-ds-base: SMD5 password storage plugin salt length integer underflow crash
The SMD5 password storage plugin in 389 Directory Server computes salt length by subtracting MD5_LENGTH (16) from the decoded hash length using unsigned 32-bit arithmetic. When the stored hash is shorter than 16 bytes, the subtraction wraps to approximately 4GB. PK11_DigestOp() then reads from a small stack buffer into unmapped memory, crashing ns-slapd with SIGSEGV.
An attacker with Directory Manager privileges plants a crafted SMD5 hash; any subsequent BIND triggers instant crash. Missed variant of CVE-2024-5953 which patched md5_pwd.c and pbkdf2_pwd.c but not smd5_pwd.c.
Present since smd5_pwd.c creation (~2005). PoC confirmed on Fedora 42 production binary.
Bugzilla
CVE-2026-2005 postgresql16: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 postgresql16: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
CVE-2026-2005 postgresql16: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained v
Bugzilla
CVE-2026-2005 postgresql17: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 postgresql17: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
CVE-2026-2005 postgresql17: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained v
Bugzilla
CVE-2026-2005 mingw-postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 mingw-postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
CVE-2026-2005 mingw-postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
This message is a reminder that Fedora Linux 42 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 42 on 2026-05-13.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '42'.
Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintain
Bugzilla
CVE-2026-2005 postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
bugzilla·2026-02-12·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
CVE-2026-2005 postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2026:3730 https://access.redhat.com/errata/RHSA-2026:3730
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 10
Via RHSA-2026:3887 https://access.redhat.com/errata/RHSA-2026:3887
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2026:3896 https://access.redhat.com/errata/RHSA-2026:
Hackernews
⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
blogs_hackernews·2026-05-11·CVSS 9.3
CVE-2026-6973 [CRITICAL] ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More
Rough Monday.
Somebody poisoned a trusted download again, somebody else turned cloud servers into public housing, and a few crews are still getting into boxes with bugs that should’ve died years ago — the same old holes, same lazy access paths, same “how the hell is this still open” feeling. One report this week basically reads like a guy tripped over root access by accident and decided to stay there.
The weird part is how normal this all sounds now. Fake updates. Quiet backdoors. Remote tools are used like skeleton keys. Forum rats swapping st
Wiz
CVE-2026-2004 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2004 [HIGH] CVE-2026-2004 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2004 :
PostgreSQL vulnerability analysis and mitigation
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 14.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql15-test-rpm-macros
postgresql18-pltcl
Sources
Alma
Wiz
CVE-2026-3172 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-3172 [HIGH] CVE-2026-3172 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-3172 :
PostgreSQL vulnerability analysis and mitigation
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from other relations or crash the database server.
Source : NVD
## 8.1
Score
Published February 25, 2026
Severity HIGH
CNA Score 8.1
Affected Technologies
PostgreSQL
pgVector
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 17.1
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
postgresql15-pgvector
postgresql16-pgvector
Sources
NVD
Debian 13 Severity MEDIUM No Fix Added at: Mar 02, 2026
Debian 14 Severity HIGH Has Fix Added at: Mar 02, 2026
Echo Severity HIGH No Fix Adde
Wiz
CVE-2026-2003 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 4.3
CVE-2026-2003 [MEDIUM] CVE-2026-2003 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2003 :
PostgreSQL vulnerability analysis and mitigation
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 4.3
Score
Published February 12, 2026
Severity MEDIUM
CNA Score 4.3
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 4.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql16
postgresql:12::postgre
Wiz
CVE-2026-2005 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2005 [HIGH] CVE-2026-2005 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2005 :
PostgreSQL vulnerability analysis and mitigation
Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 7.8
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql:12::postgresql-test
postgresql16-private-libs-debuginfo
Sources
AlmaLinux 8 Severity HIGH Has Fix Adde
Wiz
CVE-2026-2006 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2006 [HIGH] CVE-2026-2006 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2006 :
PostgreSQL vulnerability analysis and mitigation
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected.
Source : NVD
## 8.8
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.8
High-profile Vulnerability Yes
Affected Technologies
PostgreSQL
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 9.7
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql17-co
Wiz
O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
blogs_wiz·CVSS 8.8
[HIGH] O banco de dados CVE: inteligência de vulnerabilidade com curadoria da Wiz | Wiz
## Banco de dados de vulnerabilidades Wiz
Um recurso abrangente para monitorar vulnerabilidades de alto perfil em ambientes de nuvem, adaptado para equipes de segurança e profissionais de nuvem
Veja como o Wiz detecta vulnerabilidades exploráveis em cargas de trabalho na nuvem. Assista à demo de 12 minutos
## Explore por tecnologia
## Filtros populares
## Alto perfil
CVE ID
Gravidade
Pontuação
Tecnologias
Nome do componente
Exploração do CISA KEV
Tem correção
Data de publicação
CVE-2026-3854
HIGH
8.7
GitHub Enterprise Server
cpe:2.3:a:github:enterprise_server
Não
Sim
Mar 10, 2026
CVE-2026-26220
CRITICAL
9.3
Python
lightllm
Não
Não
Feb 17, 2026
CVE-2026-2006
HIGH
8.8
PostgreSQL
postgresql:13::postgresql-test-rpm-macros
Não
Sim
Feb 12, 2026
CVE-2026
Wiz
CVE-2026-2007 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-2007 [HIGH] CVE-2026-2007 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-2007 :
PostgreSQL vulnerability analysis and mitigation
Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the viability of attacks that lead to privilege escalation. PostgreSQL 18.1 and 18.0 are affected.
Source : NVD
## 8.2
Score
Published February 12, 2026
Severity HIGH
CNA Score 8.2
Affected Technologies
PostgreSQL
Linux openSUSE
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 5.3
Exploitation Probability (EPSS) N/A
Affected packages and libraries
postgresql
libecpg6
Sources
Alpine 3.20, 3.21, 3.22,
https://www.postgresql.org/support/security/CVE-2026-2005/https://access.redhat.com/errata/RHSA-2026:19009https://access.redhat.com/errata/RHSA-2026:19010https://access.redhat.com/errata/RHSA-2026:3730https://access.redhat.com/errata/RHSA-2026:3887https://access.redhat.com/errata/RHSA-2026:3896https://access.redhat.com/errata/RHSA-2026:4024https://access.redhat.com/errata/RHSA-2026:4059https://access.redhat.com/errata/RHSA-2026:4063https://access.redhat.com/errata/RHSA-2026:4064https://access.redhat.com/errata/RHSA-2026:4074https://access.redhat.com/errata/RHSA-2026:4075https://access.redhat.com/errata/RHSA-2026:4110https://access.redhat.com/errata/RHSA-2026:4254https://access.redhat.com/errata/RHSA-2026:4441https://access.redhat.com/errata/RHSA-2026:4475https://access.redhat.com/errata/RHSA-2026:4504https://access.redhat.com/errata/RHSA-2026:4505https://access.redhat.com/errata/RHSA-2026:4506https://access.redhat.com/errata/RHSA-2026:4509https://access.redhat.com/errata/RHSA-2026:4515https://access.redhat.com/errata/RHSA-2026:4516https://access.redhat.com/errata/RHSA-2026:4518https://access.redhat.com/errata/RHSA-2026:4524https://access.redhat.com/errata/RHSA-2026:4528https://access.redhat.com/errata/RHSA-2026:4544https://access.redhat.com/errata/RHSA-2026:4546https://access.redhat.com/errata/RHSA-2026:4547https://access.redhat.com/errata/RHSA-2026:4548https://access.redhat.com/errata/RHSA-2026:4943https://access.redhat.com/errata/RHSA-2026:8756https://access.redhat.com/security/cve/CVE-2026-2005https://bugzilla.redhat.com/show_bug.cgi?id=2439326https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-2005.json
2026-02-12
Published