Lucene search
HistoryMar 27, 2023 - 9:15 p.m.
CVE-2023-0241
pgadmin 4
directory traversal
vulnerability
user settings
alter database
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.5%
pgAdmin 4 versions prior to v6.19 contains a directory traversal vulnerability. A user of the product may change another user’s settings or alter the database.
Affected configurations
Node
postgresqlpgadmin_4Range<6.19
Related
veracode
veracode
Path Traversal
2023-01-26 02:49:15
osv
osv
pgAdmin 4 vulnerable to directory traversal
2023-03-27 21:30:25
CVE-2023-0241
2023-03-27 21:15:10
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:1877-1)
2023-04-18 00:00:00
Fedora: Security Advisory for pgadmin4 (FEDORA-2023-0334c6000a)
2023-02-03 00:00:00
github
github
pgAdmin 4 vulnerable to directory traversal
2023-03-27 21:30:25
cve
cve
CVE-2023-0241
2023-03-27 21:15:10
cvelist
cvelist
CVE-2023-0241
2023-03-27 00:00:00
prion
prion
Directory traversal
2023-03-27 21:15:00
jvn
jvn
JVN#01398015: pgAdmin 4 vulnerable to directory traversal
2023-01-24 00:00:00
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : pgadmin4 (SUSE-SU-2023:1877-1)
2023-04-20 00:00:00
Fedora 36 : pgadmin4 (2023-0334c6000a)
2023-02-01 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: pgadmin4-6.19-1.fc36
2023-02-02 02:06:23
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.5%
Related for NVD:CVE-2023-0241