CVE-2025-8713— PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-8713
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
Source: NVD (National Vulnerability Database)
Vulnerability Description
PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide. PostgreSQL maintains statistics for tables by sampling data available in columns; this data is consulted during the query planning process. Prior to this release, a user could craft a leaky operator that bypassed view access control lists (ACLs) and bypassed row security policies in partitioning or table inheritance hierarchies. Reachable statistics data notably included histograms and most-common-values lists. CVE-2017-7484 and CVE-2019-10130 intended to close this class of vulnerability, but this gap remained. Versions before PostgreSQL 17.6, 16.10, 15.14, 14.19, and 13.22 are affected.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1230
Source: NVD (National Vulnerability Database)
Vulnerability Title
PostgreSQL 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PostgreSQL是PostgreSQL组织的一套自由的对象关系型数据库管理系统。该系统支持大部分SQL标准并且提供了许多其他特性,例如外键、触发器、视图等。 PostgreSQL 17.6版本、16.10版本、15.14版本、14.19版本和13.22之前版本存在安全漏洞,该漏洞源于优化器统计信息可能绕过视图ACL和行安全策略泄露采样数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | PostgreSQL | 17 ~ 17.6 | - |
II. Public POCs for CVE-2025-8713
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-8713
请登录查看更多情报信息。
Same Patch Batch · n/a · 2025-08-14 · 23 CVEs total
| CVE-2025-8714 | 8.8 HIGH | PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client |
| CVE-2025-8715 | 8.8 HIGH | PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in re |
| CVE-2025-8961 | 3.3 LOW | LibTIFF tiffcrop tiffcrop.c main memory corruption |
| CVE-2025-51965 | OURPHP 安全漏洞 | |
| CVE-2025-50862 | Altus Cars Lotus Cars Android app 安全漏洞 | |
| CVE-2025-50861 | Altus Cars Lotus Cars Android app 安全漏洞 | |
| CVE-2025-52335 | EyouCMS 安全漏洞 | |
| CVE-2025-51986 | SILA Embedded Solutions Freemodbus 安全漏洞 | |
| CVE-2025-50817 | python-future 安全漏洞 | |
| CVE-2023-43687 | Malwarebytes 安全漏洞 | |
| CVE-2025-50515 | EmpireSoft Empirebak 安全漏洞 | |
| CVE-2023-43683 | Malwarebytes 安全漏洞 | |
| CVE-2023-43692 | Malwarebytes 安全漏洞 | |
| CVE-2025-50518 | libcoap 安全漏洞 | |
| CVE-2023-43694 | Malwarebytes 安全漏洞 | |
| CVE-2025-27847 | ESPEC North America Web Controller 3 安全漏洞 | |
| CVE-2025-27846 | ESPEC North America Web Controller 3 安全漏洞 | |
| CVE-2025-27845 | ESPEC North America Web Controller 3 安全漏洞 | |
| CVE-2025-43983 | KuWFi CPF908-CP5 安全漏洞 | |
| CVE-2024-53946 | KuWFi 4G LTE AC900 安全漏洞 |
Showing top 20 of 23 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: PostgreSQL
- CVE-2026-2007
PostgreSQL pg_trgm heap buffer overflow writes pattern onto - CVE-2026-2006
PostgreSQL missing validation of multibyte character length - CVE-2026-2005
PostgreSQL pgcrypto heap buffer overflow executes arbitrary - CVE-2026-2004
PostgreSQL intarray missing validation of type of input to s - CVE-2026-2003
PostgreSQL oidvector discloses a few bytes of memory
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
Same weakness: CWE-1230
- CVE-2025-31959
HCL BigFix Service Management (SM) application fails to stri - CVE-2026-29055
Tandoor Recipes: WebP and GIF Image Uploads Bypass EXIF/Meta - CVE-2026-27661
Siemens SINEC Security Monitor 安全漏洞 - CVE-2025-13084
Opto 22 groov View Exposure of Sensitive Information Through - CVE-2025-30038
Session ID leakage in Zone.Identifier of downloaded files
V. Comments for CVE-2025-8713
No comments yet