CNNVD-202511-926 Information

Nov 10, 2025 cve

CNNVD ID

CNNVD-202511-926

CVE-2025-12967

  • CNNVD Published: 2025-11-10

Description (Chinese)

Npgsql是Npgsql开源的一个 PostgreSQL 的开源 .NET 数据提供程序。 Npgsql存在安全漏洞,该漏洞源于低权限用户可创建特制函数,可能导致权限提升。

Description (English)

Npgsql is an open source .NET data provider for PostgreSQL, an open source for Npgsql. Npgsql has a security loophole, which results from low-permissible users creating a special function, which may lead to an increase in privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Npgsql

Published

2025-11-10

Last Modified

2026-02-24

References

https://github.com/aws/aws-advanced-jdbc-wrapper/security/advisories/GHSA-7xw4-g7mm-r4hh https://github.com/aws/aws-advanced-go-wrapper/security/advisories/GHSA-7wq2-32h4-9hc9 https://github.com/aws/aws-advanced-nodejs-wrapper/releases/tag/2.0.1 https://github.com/aws/aws-advanced-python-wrapper/releases/tag/1.4.0 https://github.com/aws/aws-advanced-python-wrapper/security/advisories/GHSA-4jvf-wx3f-2x8q https://github.com/aws/aws-pgsql-odbc/releases/tag/1.0.1 https://aws.amazon.com/security/security-bulletins/AWS-2025-028/ https://github.com/aws/aws-advanced-jdbc-wrapper/releases/tag/2.6.5 https://github.com/aws/aws-advanced-go-wrapper/releases/tag/release-2025-10-17 https://github.com/aws/aws-advanced-nodejs-wrapper/security/advisories/GHSA-8wj8-cfxr-9374 https://github.com/aws/aws-pgsql-odbc/security/advisories/GHSA-q327-fgm8-7mxf https://access.redhat.com/security/cve/cve-2025-12967

Patch

https://github.com/aws/aws-pgsql-odbc/releases/tag/1.0.1

Share on: