CVE-2021-3677

Name of the Vulnerable Software and Affected Versions PostgreSQL (affected versions not specified)

Description The issue is related to a flaw in PostgreSQL that allows an attacker to read arbitrary bytes of server memory using a specially crafted query. In the default configuration, any authenticated database user can exploit this issue at will, without needing the ability to create objects. The attack's feasibility may be affected by server settings, such as max worker processes=0, but undiscovered variants of the attack may not be dependent on this setting.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.