CVE-2019-10210 — Vulnetix

Try Vulnetix Request Demo

CVE-2019-10210 PUBLISHED

Es existiert eine Schwachstelle in PostgreSQL bezüglich des EnterpriseDB Windows Installationsprogramms. Während des Installationsvorgangs wird das Superuser Passwort im Klartext in eine temporäre Datei geschrieben. Die Datei wird zwar wieder gelöscht, jedoch kann ein Angreifer während des Installationsvorgangs auf diese Datei zugreifen und so das Passwort offenlegen.

EPSS 0.28% · 51.4th percentile

Risk Scores

EPSS Score

0.28%

51.4th percentile

Affected Products

Vendor	Product	Versions
SUSE	SUSE Linux
Open Source	Open Source Arch Linux
Open Source	Open Source PostgreSQL <10.10
Open Source	Open Source PostgreSQL <9.5.19
EMC	EMC NetWorker <19.7.0.1
Open Source	Open Source PostgreSQL <9.4.24
Ubuntu	Ubuntu Linux
Red Hat	Red Hat Enterprise Linux
Oracle	Oracle Linux
Amazon	Amazon Linux 2
Open Source	Open Source PostgreSQL <9.6.15
Open Source	Open Source PostgreSQL <11.5
Debian	Debian Linux

Timeline

Aug 8, 2019 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Feb 25, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2022-1380.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1380 advisory
https://www.postgresql.org/about/news/1960/ advisory
https://usn.ubuntu.com/4090-1/ advisory
https://www.debian.org/security/2019/dsa-4492 advisory
https://security.archlinux.org/ASA-201908-7 advisory
https://security.archlinux.org/ASA-201908-8 advisory
https://www.suse.com/support/update/announcement/2019/suse-su-20192159-1.html advisory
https://www.suse.com/support/update/announcement/2019/suse-su-20192228-1.html advisory
https://www.suse.com/support/update/announcement/2019/suse-su-20192158-1.html advisory
https://www.suse.com/support/update/announcement/2019/suse-su-20192707-1/ advisory
https://access.redhat.com/errata/RHSA-2020:3669 advisory
https://access.redhat.com/errata/RHSA-2020:4295 advisory
https://access.redhat.com/errata/RHSA-2020:5619 advisory
https://access.redhat.com/errata/RHSA-2020:5661 advisory
https://access.redhat.com/errata/RHSA-2020:5664 advisory
http://linux.oracle.com/errata/ELSA-2020-5619-1.html advisory
https://access.redhat.com/errata/RHSA-2021:0164 advisory
https://access.redhat.com/errata/RHSA-2021:0167 advisory
https://access.redhat.com/errata/RHSA-2021:0166 advisory

…and 6 more

Open in Interactive Console →