Vulnerabilities

Report: CVE-2026-6474 - PostgreSQL timeofday() can disclose portions of server memory - Guide

2026-05-14 0 views admin

CVE ID :CVE-2026-6474 Published : May 14, 2026, 1 p.m. | 1 hour, 16 minutes ago Description :Externally-controlled format string in PostgreSQL timeofday() function allows an attacker to retrieve portions of server memory, via crafted timezone zones. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected. Severity: 4.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-6474

Severity

MEDIUM

Published

May 14, 2026

Affected Product: PostgreSQL

🏷️ Tags

reportpostgresqltimeofdaydiscloseportionsservermemoryguidecvecve-2026-6474

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-6474 - PostgreSQL timeofday() can disclose portions of server memory - Guide

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Latest: CVE-2026-6472 - PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege

Report: Complete Guide to CVE-2026-6473 - PostgreSQL server undersizes allocations, via integer wraparound

Report: CVE-2026-6476 - PostgreSQL pg_createsubscriber allows SQL injection via subscription name - Guide

Report: CVE-2026-6475 - PostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of origin su

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting