CVE-2026-6478

Same vendor

• CVE-2026-6638 — SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION .. (3.7 LOW)
• CVE-2026-6637 — Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating syste... (8.8 HIGH)
• CVE-2026-6575 — Buffer over-read in PostgreSQL function pg_restore_attribute_stats() accepts array values of unmatched length, which causes query plannin... (4.3 MEDIUM)
• CVE-2026-6479 — Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AF_UNIX socket to achieve... (7.5 HIGH)
• CVE-2026-6477 — Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(), lo_lseek64(), and lo_tel... (8.8 HIGH)

Same CWE

• CVE-2026-5598 — Covert timing channel vulnerability in Legion of the Bouncy Castle Inc
• CVE-2025-9231 — Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm impleme... (6.5 MEDIUM)
• CVE-2025-49087 — In Mbed TLS 3.6.1 through 3.6.3 before 3.6.4, a timing discrepancy in block cipher padding removal allows an attacker to recover the plai... (4.0 MEDIUM)
• CVE-2024-23170 — An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2 (5.5 MEDIUM)