Intrusion Prevention

pgAdmin.CVE-2025-2945.Remote.Code.Execution

Description

This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in pgAdmin.
The vulnerability is due to insufficient input validation. A remote attacker can exploit this vulnerability by sending a crafted request to the vulnerable endpoint. Successful exploitation would result in execution of arbitrary code in the security context of the service.

Affected Products

pgAdmin prior to 9.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/pgadmin-org/pgadmin4/commit/75be0bc22d3d8d7620711835db817bd7c021007c

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2025-12-11	35.133	Modified	Sig Added
2025-04-30	31.999	Modified	Default_action:pass:drop
2025-04-21	31.993	New

ID	57757
Created	Apr 10, 2025
Updated	Dec 11, 2025
CVE ID
Risk
Exploit Prediction Score	77.9%
Default Action	drop
Active
Affected OS	Windows, Linux, MacOS
Affected App	Other
Profile Type	Code Injection

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

pgAdmin.CVE-2025-2945.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

pgAdmin.CVE-2025-2945.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center