CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-10211

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1050%
EPSS Percentile30.33th
Published2019年10月29日
Last Modified2024年11月21日

Vulnerability Description

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via bundled OpenSSL executing code from unprotected directory.

Affected Platforms (CPE)

📦
Postgresql

Postgresql

< 9.4.24
📦
Postgresql

Postgresql

>= 9.5.0 and < 9.5.19
📦
Postgresql

Postgresql

>= 9.6.0 and < 9.6.15
📦
Postgresql

Postgresql

>= 10.0 and < 10.10
📦
Postgresql

Postgresql

>= 11.0 and < 11.5

References & Advisories

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10211
🔗 https://www.postgresql.org/about/news/1960/
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10211
🔗 https://www.postgresql.org/about/news/1960/

相关漏洞威胁

CVE-2003-050010.0

SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote a...

CVE-2005-365610.0

Multiple format string vulnerabilities in logging functions in mod_auth_pgsql before 2.0.3, when used for user authentication agai...

CVE-2002-139910.0

Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and earlier, and possibly later versions before...

CVE-2007-327910.0

PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileg...