CVE-2026-29089
- EPSS 0.02%
- Veröffentlicht 06.03.2026 17:06:34
- Zuletzt bearbeitet 18.03.2026 18:50:46
TimescaleDB is a time-series database for high-performance real-time analytics packaged as a Postgres extension. From version 2.23.0 to 2.25.1, PostgreSQL uses the search_path setting to locate unqualified database objects (tables, functions, operato...
CVE-2023-25149
- EPSS 0.4%
- Veröffentlicht 14.02.2023 14:15:09
- Zuletzt bearbeitet 21.11.2024 07:49:12
TimescaleDB, an open-source time-series SQL database, has a privilege escalation vulnerability in versions 2.8.0 through 2.9.2. During installation, TimescaleDB creates a telemetry job that is runs as the installation user. The queries run as part of...
- EPSS 0.34%
- Veröffentlicht 13.03.2022 18:15:07
- Zuletzt bearbeitet 21.11.2024 06:49:52
Timescale TimescaleDB 1.x and 2.x before 2.5.2 may allow privilege escalation during extension installation. The installation process uses commands such as CREATE x IF NOT EXIST that allow an unprivileged user to precreate objects. These objects will...