CVE-2019-10128

Name of the Vulnerable Software and Affected Versions postgresql versions 11.x prior to 11.3

Description A vulnerability was found in the Windows installer for EnterpriseDB-supplied PostgreSQL, which does not lock down the ACL of the binary installation directory or the ACL of the data directory, keeping the inherited ACL. This allows a local attacker to read arbitrary data directory files, essentially bypassing database-imposed read access limitations. In non-default configurations, an attacker with both an unprivileged Windows account and an unprivileged PostgreSQL account can cause the PostgreSQL service account to execute arbitrary code.

Recommendations For postgresql versions 11.x prior to 11.3, consider updating to version 11.3 or later to resolve the issue. As a temporary workaround, restrict access to the data directory and binary installation directory to minimize the risk of exploitation. Additionally, review and adjust the ACL settings for these directories to ensure proper access control.