CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-6477

highcovered by 2 sourcesfirst seen 2026-06-29
An attacker can exploit multiple vulnerabilities in PostgreSQL to execute arbitrary program code, carry out a denial-of-service attack, disclose information, manipulate files, conduct an SQL injection attack, and bypass security measures.

CSIRTS triage

What
An attacker can exploit multiple vulnerabilities in PostgreSQL to execute arbitrary program code, carry out a denial-of-service attack, disclose information, manipulate files, conduct an SQL injection attack, and bypass security measures.
Who is affected
Deployments of PostgreSQL with the affected versions.
Urgency
Remediation is urgent due to the high severity and potential for remote code execution and denial of service.
Action
Apply the latest patches for PostgreSQL.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-6477

Get an email if CVE-2026-6477 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2026-6477

CVE.org record

Embed the live status

CVE-2026-6477 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-6477 status](https://www.csirts.com/badge/CVE-2026-6477)](https://www.csirts.com/cve/CVE-2026-6477)