Description

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via bundled OpenSSL executing code from unprotected directory.

Remediation

References

CVE-2019-10211

Related Vulnerabilities

WordPress Plugin Sermon Browser Multiple Cross-Site Scripting Vulnerabilities (0.45.15)

Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11820)

WordPress Plugin Gigya-Social Infrastructure Cross-Site Scripting (1.1.8)

Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2019-10081)

EspoCRM Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-46736)

Severity

Critical

Classification

CVE-2019-10211 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities