Critical severity9.8NVD Advisory· Published Aug 10, 2021· Updated Jun 17, 2026
CVE-2021-38140
CVE-2021-38140
Description
The set_user extension module before 2.0.1 for PostgreSQL allows a potential privilege escalation using RESET SESSION AUTHORIZATION after set_user().
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- PostgreSQL/PostgreSQLdescription
- Range: <2.0.1
Patches
Vulnerability mechanics
References
2- github.com/pgaudit/set_user/compare/REL2_0_0...REL2_0_1nvdPatchThird Party Advisory
- github.com/pgaudit/set_user/releases/tag/REL2_0_1nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.