Rusty pearls: Postgres RCE on cloud databases

Name: Rusty pearls: Postgres RCE on cloud databases
Description: PostgreSQL is one of the most widely deployed open-source relational databases in the world, and virtually every major cloud provider — AWS, Azure, GCP, and others — offers a managed PostgreSQL servic

Tal Peleg, Coby Abrams

DEF CON 33 · Day 2 · Main Stage

PostgreSQL is one of the most widely deployed open-source relational databases in the world, and virtually every major cloud provider — AWS, Azure, GCP, and others — offers a managed PostgreSQL servic

AI review

pgrx unsafe boundary use-after-free leading to PostgreSQL RCE in managed cloud databases, with IMDS credential access as post-exploitation — real impact, methodologically sound, but moderate novelty.

Watch on YouTube