Endpoint Vulnerability

PostgreSQL: Start scripts permit database administrator to modify root-owned files

Description

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. An attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.

Affected Products

PostgreSQL

References

CVE-2017-12172,