Is PostgreSQL 11.22 patched?
Current stable (18.4): 100/100
11.22 has 5 open critical-or-high vulnerabilities. Run 14.23 or later to clear them. See what 14.23 fixes →
Summary iPlain-English security status for PostgreSQL 11.22, built from its CVEs, active-exploitation data, end-of-life date and latest release.
PostgreSQL 11.22 is part of the 11.22 release line. 8 known vulnerabilities affect it. The minimum safe version is 14.23 — upgrade to it or later to clear the open critical/high issues. The latest supported PostgreSQL release is 18.4.
Known issues affecting 11.22
Exploited first, then by exploitation probability.
CVE-2026-6479 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6473 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6637 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6475 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6477 HIGH EPSS 0% → fixed in 18.4 CVE-2026-6478 MEDIUM EPSS 0% → fixed in 18.4 CVE-2026-6474 MEDIUM EPSS 0% → fixed in 18.4 CVE-2026-6472 MEDIUM EPSS 0% → fixed in 18.4Other PostgreSQL versions
Check another release line of PostgreSQL.
Frequently asked
Is PostgreSQL 11.22 patched?
PostgreSQL 11.22 has 5 open critical-or-high vulnerabilities. The minimum safe version is 14.23 — upgrade to 14.23 or later to clear them.
What version should I upgrade PostgreSQL 11.22 to?
Upgrade PostgreSQL 11.22 to at least 14.23 to clear its 5 open critical-or-high vulnerabilities.
What is the latest version of PostgreSQL?
The latest supported PostgreSQL release is 18.4.
Is PostgreSQL 11.22 still receiving security updates?
Yes — the 11.22 line is still supported and receiving security updates. The latest release is 18.4.
Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against PostgreSQL's official advisory before you patch or upgrade — PostgreSQL official site ↗