The vulnerability identified as CVE-2026-2361 affects DALIBO PostgreSQL Anonymizer version 1, a tool designed to anonymize data in PostgreSQL databases. The flaw arises from an uncontrolled search path element that allows a user with CREATE privileges to escalate their privileges to superuser. Specifically, an attacker can create a temporary view based on a function containing malicious code. When the anon.get_tablesample_ratio function is invoked, this malicious code executes with superuser privileges, granting the attacker full control over the database instance. The vulnerability is particularly severe in PostgreSQL 14 or instances upgraded from version 14 or earlier because the public schema creation permission is granted by default, increasing the attack surface. The CVSS v3.1 score is 8.0, indicating high severity, with attack vector as network, requiring high privileges but no user interaction, and impacting confidentiality, integrity, and availability with scope change. The issue is addressed in PostgreSQL Anonymizer version 3.0.1 and later. No known exploits have been reported in the wild, but the vulnerability's nature makes it a critical concern for environments where untrusted users have CREATE privileges.

For European organizations, this vulnerability poses a significant risk to database security, especially in sectors relying heavily on PostgreSQL for sensitive data processing such as finance, healthcare, and government. Successful exploitation leads to full superuser access, allowing attackers to read, modify, or delete any data, create backdoors, or disrupt services, severely impacting confidentiality, integrity, and availability. The elevated risk in PostgreSQL 14 or upgraded instances means many organizations that have not updated schema permissions or anonymizer versions remain vulnerable. This can lead to data breaches, regulatory non-compliance (e.g., GDPR violations), operational disruption, and reputational damage. The absence of known exploits in the wild provides a window for proactive mitigation, but the high severity demands urgent attention.

European organizations should immediately upgrade DALIBO PostgreSQL Anonymizer to version 3.0.1 or later to remediate this vulnerability. Additionally, review and restrict CREATE privileges, especially on the public schema, limiting them to trusted users only. Implement strict role-based access controls (RBAC) and audit database permissions regularly to detect and prevent unauthorized privilege escalations. Disable or restrict the use of the anon.get_tablesample_ratio function if not essential. Employ database activity monitoring to detect anomalous function calls or creation of suspicious views. Finally, ensure PostgreSQL instances are updated to the latest supported versions and apply all relevant security patches promptly. Conduct security awareness training for DBAs and developers about the risks of granting excessive privileges.