Unredacted Password Logging Vulnerability in EnterpriseDB EDB Postgres Advanced Server (EPAS)

Unredacted Password Logging Vulnerability in EnterpriseDB EDB Postgres Advanced Server (EPAS)

CVE-2023-31043 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EnterpriseDB EDB Postgres Advanced Server (EPAS) before 14.6.0 logs unredacted passwords in situations where optional parameters are used with CREATE/ALTER USER/GROUP/ROLE, and redacting was configured with edb_filter_log.redact_password_commands. The fixed versions are 10.23.33, 11.18.29, 12.13.17, 13.9.13, and 14.6.0.

Learn more about our Cis Benchmark Audit For Server Software.