Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2023-31043

Published: 23/04/2023 Updated: 02/05/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

EnterpriseDB EDB Postgres Advanced Server (EPAS) prior to 14.6.0 logs unredacted passwords in situations where optional parameters are used with CREATE/ALTER USER/GROUP/ROLE, and redacting was configured with edb_filter_log.redact_password_commands. The fixed versions are 10.23.33, 11.18.29, 12.13.17, 13.9.13, and 14.6.0.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

enterprisedb postgres advanced server

References

CWE-312https://www.enterprisedb.com/docs/epas/13/epas_rel_notes/epas13_9_13_rel_notes/https://www.enterprisedb.com/docs/epas/11/epas_rel_notes/epas11_18_29_rel_notes/https://www.enterprisedb.com/docs/epas/10/epas_rel_notes/epas10_23_33_rel_notes/https://www.enterprisedb.com/docs/epas/14/epas_rel_notes/epas14_6_0_rel_notes/https://www.enterprisedb.com/docs/epas/12/epas_rel_notes/epas12_13_17_rel_notes/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypassopen redirectCVE-2024-4358CVE-2024-24199CVE-2024-5550CVE-2024-5305CVE-2024-30373CVE-2024-1800deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook