Set User Project Set User — known CVE vulnerabilities
Every CVE whose affected-product data names Set User Project Set User, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-38140 — CVSS 9.8 (critical): The set_user extension module before 2.0.1 for PostgreSQL allows a potential privilege escalation using RESET SESSION AUTHORIZATION after…
CVE-2021-41558 — CVSS 9.8 (critical): The set_user extension module before 3.0.0 for PostgreSQL allows ProcessUtility_hook bypass via set_config.