Home

CVE-2019-10210

Description

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via superuser writing password to unprotected temporary file.

Risk Information

Base Score
7.0
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.282

Associated Vulnerability

VulnerabilityOS Platform
Update Postgresql 10.10 fixes multiple vulnerabilities.Windows
Update Postgresql 11.5 fixes multiple vulnerabilitiesWindows
Update Postgresql 9.4.24 fixes multiple vulnerabilitiesWindows
Update Postgresql 9.5.19 fixes multiple vulnerabilitiesWindows
Update Postgresql 9.6.15 fixes multiple vulnerabilitiesWindows
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10209,CVE-2019-10208 are fixed in PostgreSQL 11.5Windows
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 10.10Windows
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.6.15Windows
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.5.19Windows
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.4.24Windows
Update Postgresql 10.10 fixes multiple vulnerabilities. (For Linux)Linux
Update Postgresql 11.5 fixes multiple vulnerabilities (For Linux)Linux
Update Postgresql 9.4.24 fixes multiple vulnerabilities (For Linux)Linux
Update Postgresql 9.5.19 fixes multiple vulnerabilities (For Linux)Linux
Update Postgresql 9.6.15 fixes multiple vulnerabilities (For Linux)Linux
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10209,CVE-2019-10208 are fixed in PostgreSQL 11.5 (For Linux)Linux
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 10.10 (For Linux)Linux
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.6.15 (For Linux)Linux
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.5.19 (For Linux)Linux
Vulnerabilities CVE-2019-10211,CVE-2019-10210,CVE-2019-10208 are fixed in PostgreSQL 9.4.24 (For Linux)Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234