cbcvebase.
CVE-2023-31043
published 2023-04-23

CVE-2023-31043: EnterpriseDB EDB Postgres Advanced Server (EPAS) before 14.6.0 logs unredacted passwords in situations where optional parameters are used with CREATE/ALTER…

PriorityP342high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.43%
34.4th percentile
EnterpriseDB EDB Postgres Advanced Server (EPAS) before 14.6.0 logs unredacted passwords in situations where optional parameters are used with CREATE/ALTER USER/GROUP/ROLE, and redacting was configured with edb_filter_log.redact_password_commands. The fixed versions are 10.23.33, 11.18.29, 12.13.17, 13.9.13, and 14.6.0.

Affected

5 ranges
VendorProductVersion rangeFixed in
enterprisedbpostgres_advanced_server< 10.23.3310.23.33
enterprisedbpostgres_advanced_server>= 11.1.7 < 11.18.2911.18.29
enterprisedbpostgres_advanced_server>= 12.1.2 < 12.13.1712.13.17
enterprisedbpostgres_advanced_server>= 13.1.4 < 13.9.1313.9.13
enterprisedbpostgres_advanced_server>= 14.1.0 < 14.6.014.6.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.