Amazon Aurora PostgreSQL - 1 CVEs (Page 1/1)

About “Amazon Aurora PostgreSQL”

A curated feed of “Amazon Aurora PostgreSQL”-related CVEs appears below. We currently track 1 CVEs for this tag (all time). In the last 365 days, 1 were published. Average CVSS is 8.0 (all time; 8.0 over 365d), and 100% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-470 - Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection').

In our taxonomy this topic maps to a LOW impact class. Cloud and managed service CVEs involve shared responsibility. Check provider bulletins to confirm tenant actions, limit exposure, and rotate keys if advised. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: amazon-aurora-postgresql

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	Extended Support	EOL
17	2025-02-20	17.9	2033-02-28	2030-02-28
16	2023-09-14	16.13	2032-02-28	2029-02-28
15	2022-11-10	15.17	2031-02-28	2028-02-29
14	2021-09-30	14.22	2030-02-28	2027-02-28
13	2020-09-24	13.23	2029-02-28	2026-02-28 Expired
12	2019-11-14	12.22	2028-02-29	2025-02-28 Expired
11	2018-10-18	11.21	2027-03-31	2024-02-29 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS · RSS (expired) · ICS

Subscribe CVEs: RSS for “Amazon Aurora PostgreSQL” · RSS (High+Critical only)

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0

2025-11-10

High

CVE-2025-12967

An issue in AWS Wrappers for Amazon Aurora PostgreSQL may allow for privilege escalation to rds_superuser role. A low privilege authenticated user can create a crafted function that could be executed…

CVSS: 8.0 CWE: CWE-470 - Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') View on NVD