VYPR
High severity7.1NVD Advisory· Published Dec 9, 2016· Updated Jun 17, 2026

CVE-2016-5424

CVE-2016-5424

Description

PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) " (double quote), (2) \ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

66

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.