Description

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via superuser writing password to unprotected temporary file.

Remediation

References

CVE-2019-10210

Related Vulnerabilities

MySQL CVE-2024-20969 Vulnerability (CVE-2024-20969)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14320)

IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1474)

Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-2729)

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5478)

Severity

High

Classification

CVE-2019-10210 CWE-20 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities