CVE-2019-10210

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via superuser writing password to unprotected temporary file.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10210 Issue Tracking Third Party Advisory
https://www.postgresql.org/about/news/1960/ Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:a:postgresql:postgresql:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-10-29 19:15

Updated : 2024-02-28 17:28


NVD link : CVE-2019-10210

Mitre link : CVE-2019-10210

CVE.ORG link : CVE-2019-10210


JSON object : View

Products Affected

microsoft

  • windows

postgresql

  • postgresql
CWE
CWE-522

Insufficiently Protected Credentials