Pgadmin · Pgadmin · CVE-2024-3116
**Name of the Vulnerable Software and Affected Versions**
pgAdmin versions 8.4 and earlier
**Description**
pgAdmin is susceptible to a Remote Code Execution (RCE) vulnerability stemming from improper restriction of the path name to an accessible directory. Successful exploitation allows a remote attacker to execute arbitrary code on the server hosting pgAdmin, potentially compromising the database management system and its underlying data.
**Recommendations**
pgAdmin versions prior to 8.5 are affected.
Upgrade to version 8.5 or later to address this issue.