PostgreSQL refint allows stack buffer overflow and SQL injection

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating system user running the database. A distinct attack is possible if the application declares a user-controlled column as a "refint" cascade primary key and facilitates user-controlled updates to that column. In that case, a SQL injection allows a primary key update value provider to execute arbitrary SQL as the database user performing the primary key update. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.

AI Analysis

Stack buffer overflow and SQL injection vulnerability in PostgreSQL refint module

Basic Information

ID CVE-2026-6637

Source PostgreSQL

Published May 14, 2026 at 13:00

Affected Product

Vendor n/a

Product PostgreSQL

Version 18

Affected Versions n/a PostgreSQL 18
n/a PostgreSQL 17
n/a PostgreSQL 16
n/a PostgreSQL 15
n/a PostgreSQL 0

CWE Classification

CWE-121 CWE-89

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor PostgreSQL Global Development Group

Product PostgreSQL

Version 18.4, 17.10, 16.14, 15.18, 14.23

References

www.postgresql.org /support/security/CVE-2026-6637/

{
    "lastseen": "",
    "description": "Stack buffer overflow in PostgreSQL module \"refint\" allows an unprivileged database user to execute arbitrary code as the operating system user running the database.  A distinct attack is possible if the application declares a user-controlled column as a \"refint\" cascade primary key and facilitates user-controlled updates to that column.  In that case, a SQL injection allows a primary key update value provider to execute arbitrary SQL as the database user performing the primary key update.  Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.",
    "published": "2026-05-14T13:00:15.223Z",
    "modified": "2026-05-14T13:00:15.223Z",
    "type": "cve",
    "title": "PostgreSQL refint allows stack buffer overflow and SQL injection",
    "source": "PostgreSQL",
    "references": "https://www.postgresql.org/support/security/CVE-2026-6637/",
    "id": "CVE-2026-6637",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "n/a PostgreSQL 18\nn/a PostgreSQL 17\nn/a PostgreSQL 16\nn/a PostgreSQL 15\nn/a PostgreSQL 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "PostgreSQL",
    "version": "18",
    "vendor": "n/a",
    "ai_description": "Stack buffer overflow and SQL injection vulnerability in PostgreSQL refint module",
    "ai_severity": "High",
    "ai_vendor": "PostgreSQL Global Development Group",
    "ai_product": "PostgreSQL",
    "ai_version": "18.4, 17.10, 16.14, 15.18, 14.23",
    "ai_score": 8.8
}

PostgreSQL refint allows stack buffer overflow and SQL injection_CVE-2026-6637