CVE-2017-20052

Python pgAdmin4 uncontrolled search path

Published: 6/16/2022 Last updated: 4/15/2025 Reserved: 6/13/2022

A vulnerability classified as problematic was found in Python 2.7.13. This vulnerability affects unknown code of the component pgAdmin4. The manipulation leads to uncontrolled search path. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CNA assigner: VulDB (1af790b2-7ee1-4545-860a-a788eba489b5) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	5	Medium	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Opam packages affected (7)

conf-python-2-7 conf-python-2-7-dev conf-python-3 conf-python-3-7 conf-python-3-dev py termbox

Products affected (1)

Product	Vendor	Version
Python	unspecified	9.2

References (6)

http://seclists.org/fulldisclosure/2017/Feb/92
https://vuldb.com/?id.97822
https://security.netapp.com/advisory/ntap-20220804-0005/
http://seclists.org/fulldisclosure/2017/Feb/92
https://vuldb.com/?id.97822
https://security.netapp.com/advisory/ntap-20220804-0005/

Credits (1)

Karn Ganeshen