Set User

set_user

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-41558 1Set User Project 1Set User Nov 21, 2024 Sep 27, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The set_user extension module before 3.0.0 for PostgreSQL allows ProcessUtility_hook bypass via set_config.
CVE-2021-38140 1Set User Project 1Set User Nov 21, 2024 Aug 10, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The set_user extension module before 2.0.1 for PostgreSQL allows a potential privilege escalation using RESET SESSION AUTHORIZATION after set_user().