CVE-2024-2044

Exploit

EPSS 83.47%
Veröffentlicht 07.03.2024 21:15:08
Zuletzt bearbeitet 19.09.2025 14:55:20
Quelle f86ef6dc-4d3a-42ad-8f28-e6d554
CVE-Watchlists
Login
Unerledigt
Login

Unsafe Deserialisation and Remote Code Execution by an Authenticated user in pgAdmin 4

pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code. If the server is running on Windows, an unauthenticated attacker can load and deserialize remote pickle objects and gain code execution. If the server is running on POSIX/Linux, an authenticated attacker can upload pickle objects, deserialize them, and gain code execution.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

NVD 2 VulnDex Vulnerability Enrichment 3

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Pgadmin ≫ Pgadmin 4 SwPlatformpostgresql Version < 8.4

Fedoraproject ≫ Fedora Version40

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	83.47%	0.993

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
f86ef6dc-4d3a-42ad-8f28-e6d5547a5007	9.9	3.1	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-31 Path Traversal: 'dir\..\..\filename'

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize 'dir\..\..\filename' (multiple internal backslash dot dot) sequences that can resolve to a location that is outside of that directory.

https://github.com/pgadmin-org/pgadmin4/issues/7258

Vendor Advisory

Issue Tracking

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LUYN2JXKKHFSVTASH344TBRGWDH64XQV/

Mailing List

https://www.shielder.com/advisories/pgadmin-path-traversal_leads_to_unsafe_deserialization_and_rce/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-2044

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-2044

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-2044

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-2044