CVE-2026-9617
Analyzed Analyzed - Analysis Complete
Privilege Escalation in PostgreSQL Anonymizer

Publication date: 2026-05-27

Last updated on: 2026-06-02

Assigner: PostgreSQL

Description
PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a table and placing malicious code inside a column identifier. If a superuser calls the k-anonymity function, the malicious code is executed with superuser privileges. The risk is higher with PostgreSQL 14 or with instances upgraded from PostgreSQL 14 or a prior version. With PostgreSQL 15 and later, the creation permission on the public schema is revoked by default and this exploit can only be achieved by a user who was explicitly granted the CREATE TABLE privilege. The problem is resolved in PostgreSQL Anonymizer 3.1.0 and further versions
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-06-02
Generated
2026-06-16
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-9617
EUVD
EUVD-2026-32504
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
dalibo anonymizer 2.5.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-89 The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a table and placing malicious code inside a column identifier.

If a superuser calls the k-anonymity function, the malicious code is executed with superuser privileges.

The risk is higher with PostgreSQL 14 or with instances upgraded from PostgreSQL 14 or a prior version.

In PostgreSQL 15 and later, the creation permission on the public schema is revoked by default, so this exploit can only be achieved by a user explicitly granted the CREATE TABLE privilege.

The vulnerability is fixed in PostgreSQL Anonymizer version 3.1.0 and later.

Impact Analysis

This vulnerability can allow an attacker to escalate their privileges to superuser level within the PostgreSQL environment.

With superuser privileges, the attacker can execute arbitrary code with the highest level of access, potentially compromising the entire database system.

This can lead to unauthorized data access, data modification, or disruption of database services.

Mitigation Strategies

To mitigate this vulnerability, you should upgrade PostgreSQL Anonymizer to version 3.1.0 or later, where the issue is resolved.

Additionally, for PostgreSQL 15 and later, ensure that users are not granted CREATE TABLE privileges on the public schema unless necessary, as this reduces the risk of exploitation.

For PostgreSQL 14 or instances upgraded from version 14 or earlier, consider restricting superuser access and monitoring the use of the k-anonymity function to prevent execution of malicious code.

Compliance Impact

The vulnerability in PostgreSQL Anonymizer allows a user to gain superuser privileges through malicious code execution when a superuser calls the k-anonymity function. This escalation of privileges can lead to unauthorized access and potential data breaches.

Such unauthorized access and potential data breaches can negatively impact compliance with data protection standards and regulations like GDPR and HIPAA, which require strict controls over access to sensitive data and protection against unauthorized disclosure.

However, the vulnerability is resolved in PostgreSQL Anonymizer version 3.1.0 and later, and mitigations exist in PostgreSQL 15 and later versions that reduce the risk by revoking creation permissions by default.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-9617. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart