PyPi: Pgadmin4

CVE-2024-3116

Safety vulnerability ID: 71204

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Apr 04, 2024 Updated at Dec 12, 2024

Scan your Python projects for vulnerabilities →

Advisory

Affected versions of Pgadmin4 are vulnerable to Remote Code Execution (RCE) through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the underlying data.

Affected package

pgadmin4

Latest version: 8.14

PostgreSQL Tools

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3116

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application