Skip to main content

Incorrect Default Permissions

CVE-2024-6238

Severity High
Score 7.4/10

Summary

The pgadmin4 versions through 8.8 have an installation Directory permission issue. Because of this issue, attackers can gain unauthorized access to the installation directory on the Debian or RHEL 8 platforms.

  • LOW
  • NETWORK
  • LOW
  • CHANGED
  • NONE
  • LOW
  • LOW
  • LOW

CWE-276 - Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

Advisory Timeline

  • Published