{
  "affected": [
    {
      "ranges": [
        {
          "database_specific": {
            "cpe": "cpe:2.3:a:dalibo:anonymizer:2.5.1:*:*:*:*:postgresql:*:*",
            "extracted_events": [
              {
                "introduced": "1"
              },
              {
                "fixed": "3.1.0"
              },
              {
                "introduced": "2.5.1"
              },
              {
                "last_affected": "2.5.1"
              }
            ],
            "source": [
              "AFFECTED_FIELD",
              "CPE_STRING"
            ]
          },
          "events": [
            {
              "introduced": "c79d5b610629a197f1eb4c868168c8cba9db4868"
            },
            {
              "fixed": "d5411925d6467dc000ca4ea34a5818c4cb7d5335"
            }
          ],
          "repo": "https://gitlab.com/dalibo/postgresql_anonymizer",
          "type": "GIT"
        }
      ],
      "versions": [
        "2.5.1"
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "PostgreSQL",
    "cwe_ids": [
      "CWE-89"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/9xxx/CVE-2026-9617.json"
  },
  "details": "PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by creating a table and placing malicious code inside a column identifier. If a superuser calls the k-anonymity function, the malicious code is executed with superuser privileges. The risk is higher with PostgreSQL 14 or with instances upgraded from PostgreSQL 14 or a prior version. With PostgreSQL 15 and later, the creation permission on the public schema is revoked by default and this exploit can only be achieved by a user who was explicitly granted the CREATE TABLE privilege. The problem is resolved in PostgreSQL Anonymizer 3.1.0 and further versions",
  "id": "CVE-2026-9617",
  "modified": "2026-07-15T01:49:20.637820013Z",
  "published": "2026-05-27T13:55:10.863Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/9xxx/CVE-2026-9617.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9617"
    },
    {
      "type": "REPORT",
      "url": "https://gitlab.com/dalibo/postgresql_anonymizer/-/issues/640"
    }
  ],
  "schema_version": "1.8.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "PostgreSQL Anonymizer: malicious column name allows SQL injection via anon.k_anonymity() function"
}