CVE-2019-10210

Summary

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via superuser writing password to unprotected temporary file.

Affected Software

VendorProductVersion RangeStatus
PostgreSQLpostgresqlall 11.x before 11.5affected
PostgreSQLpostgresqlall 10.x before 10.10affected
PostgreSQLpostgresqlall 9.6.x before 9.6.15affected
PostgreSQLpostgresqlall 9.5.x before 9.5.19affected
PostgreSQLpostgresqlall 9.4.x before 9.4.24affected

Weaknesses

  • CWE-522: CWE-522

ADP Enrichment

CVE Program Container

Additional References

References