Unknown · Pg Partman · CVE-2021-33204
**Name of the Vulnerable Software and Affected Versions**
pg partman versions prior to 4.5.1
**Description**
The issue allows for arbitrary code execution via SECURITY DEFINER functions due to the lack of an explicit search path setting. This can potentially enable a remote attacker to access confidential data, compromise its integrity, and cause a denial of service.
**Recommendations**
For versions prior to 4.5.1, update to version 4.5.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of SECURITY DEFINER functions until the update is applied.