pgAdmin 4 is a reliable and comprehensive database design and management software for PostgreSQL. pgAdmin 4 suffers from a remote code execution vulnerability, which is required in the Windows environment, and due to the developerโs lax permission checks, an attacker could exploit the vulnerability by constructing a request to make pgAdmin access a malicious UNC address to execute arbitrary commands.
CPE | Name | Operator | Version |
---|---|---|---|
pgadmin pgadmin 4 < | eq | 6.17 |