CVE-2023-1907

Summary

A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to another user's session if multiple connection attempts occur simultaneously.

Affected Software

VendorProductVersion RangeStatus
0 < 7.0affected

Weaknesses

  • CWE-488: Exposure of Data Element to Wrong Session

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References