VYPR
Medium severity4.3NVD Advisory· Published May 14, 2026· Updated May 18, 2026

CVE-2026-6474

CVE-2026-6474

Description

Externally-controlled format string in PostgreSQL timeofday() function allows an attacker to retrieve portions of server memory, via crafted timezone zones. Versions before PostgreSQL 18.4, 17.10, 16.14, 15.18, and 14.23 are affected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.