8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
14.6%
A vulnerability was found in postgresql versions 11.x prior to 11.3. The
Windows installer for BigSQL-supplied PostgreSQL does not lock down the ACL
of the binary installation directory or the ACL of the data directory; it
keeps the inherited ACL. In the default configuration, an attacker having
both an unprivileged Windows account and an unprivileged PostgreSQL account
can cause the PostgreSQL service account to execute arbitrary code. An
attacker having only the unprivileged Windows account can read arbitrary
data directory files, essentially bypassing database-imposed read access
limitations. An attacker having only the unprivileged Windows account can
also delete certain data directory files.
Author | Note |
---|---|
mdeslaur | windows-specific |
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
14.6%