CVE-2024-9014

Currently unrated 🤨

Key Information

Vendor: CVE Published:; 23 September 2024

Badges

👾 Exploit Exists🔴 Public PoC

Summary

pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-9014
Created by EQSTLab

Refferences

https://github.com/pgadmin-org/pgadmin4/issues/7945

Timeline

🔴
Public PoC available
Sep 26, 2024
👾
Exploit known to exist
Sep 26, 2024
Vulnerability published
Sep 23, 2024

Collectors

NVD Database1 Proof of Concept(s)