CVE-2023-2454

EPSS 0.23% · P46 Updated Jun 04, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-2454

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

输入验证不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

PostgreSQL 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PostgreSQL是PostgreSQL组织的一套自由的对象关系型数据库管理系统。该系统支持大部分SQL标准并且提供了许多其他特性，例如外键、触发器、视图等。 PostgreSQL 11版本至15版本存在安全漏洞，该漏洞源于不正确地施加了安全限制，允许远程用户在系统上执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	postgresql	PostgreSQL 15.3, PostgreSQL 14.8, PostgreSQL 13.11, PostgreSQL 12.15, PostgreSQL 11.20	-

II. Public POCs for CVE-2023-2454

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-2454

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-06-09 · 24 CVEs total

CVE-2023-29755		Urbandroid Twilight 安全漏洞
CVE-2023-34363		Progress Software DataDirect Connect 安全特征问题漏洞
CVE-2023-34364		Progress Software DataDirect Connect 缓冲区错误漏洞
CVE-2023-29712		Vade Secure Gateway 跨站脚本漏洞
CVE-2023-30262		MIM Software 代码问题漏洞
CVE-2023-33557		FUEL CMS SQL注入漏洞
CVE-2023-27706		Bitwarden 安全漏洞
CVE-2023-29713		Vade Secure Gateway 跨站脚本漏洞
CVE-2023-29714		Vade Secure Gateway 跨站脚本漏洞
CVE-2023-2455		PostgreSQL 安全漏洞
CVE-2023-29749		Yandex Navigator 安全漏洞
CVE-2023-29752		Facemoji Emoji Keyboard 安全漏洞
CVE-2023-29753		Facemoji Emoji Keyboard 安全漏洞
CVE-2023-29756		Urbandroid Twilight 安全漏洞
CVE-2023-29757		Leap Apps Group Blue Light Filter 安全漏洞
CVE-2023-29758		Leap Apps Group Blue Light Filter 安全漏洞
CVE-2023-29759		flightaware 安全漏洞
CVE-2023-29761		Urbandroid Sleep 安全漏洞
CVE-2023-29766		CrossX 安全漏洞
CVE-2023-29767		CrossX 资源管理错误漏洞

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: postgresql

Same vendor: n/a

Same weakness: CWE-20

V. Comments for CVE-2023-2454

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-2454

I. Basic Information for CVE-2023-2454

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-2454

III. Intelligence Information for CVE-2023-2454

Same Patch Batch · n/a · 2023-06-09 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-2454

Leave a comment