Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-6575
PUBLISHED
More InfoOfficial Page
Assigner-PostgreSQL
Assigner Org ID-f86ef6dc-4d3a-42ad-8f28-e6d5547a5007
View Known Exploited Vulnerability (KEV) details
Published At-14 May, 2026 | 13:00
Updated At-14 May, 2026 | 15:26
Rejected At-
▼CVE Numbering Authority (CNA)
PostgreSQL pg_restore_attribute_stats accepts values that cause query planning to read past end of stats array

Buffer over-read in PostgreSQL function pg_restore_attribute_stats() accepts array values of unmatched length, which causes query planning to read past end of one array. This allows a table maintainer to infer memory values past that array end. Within major version 18, minor versions before PostgreSQL 18.4 are affected. Versions before PostgreSQL 18 are unaffected.

Affected Products
Vendor
n/a
Product
PostgreSQL
Default Status
unaffected
Versions
Affected
  • From 18 before 18.4 (rpm)
Problem Types
TypeCWE IDDescription
CWECWE-126Buffer Over-read
Type: CWE
CWE ID: CWE-126
Description: Buffer Over-read
Metrics
VersionBase scoreBase severityVector
3.14.3MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Version: 3.1
Base score: 4.3
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations

attacker has permission to create objects (temporary objects or non-temporary objects in at least one schema) or permission to maintain an existing table

Workarounds
Exploits
Credits
The PostgreSQL project thanks Jeroen Gui for reporting this problem.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.postgresql.org/support/security/CVE-2026-6575/
N/A
Hyperlink: https://www.postgresql.org/support/security/CVE-2026-6575/
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found