pgadmin4 (SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS package pgadmin4, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2023-1907 — CVSS 8.0 (high): A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to…
CVE-2025-9636 — CVSS 7.9 (high): pgAdmin <= 9.7 is affected by a Cross-Origin Opener Policy (COOP) vulnerability. This vulnerability allows an attacker to manipulate the…
CVE-2024-4068 — CVSS 7.5 (high): The NPM package `braces`, versions prior to 3.0.3, fails to limit the number of characters it can handle, which could lead to Memory…
CVE-2025-12764 — CVSS 7.5 (high): pgAdmin <= 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special…
CVE-2025-12765 — CVSS 7.5 (high): pgAdmin <= 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification.
CVE-2025-27152 — CVSS 5.3 (medium): axios is a promise based HTTP client for the browser and node.js. The issue occurs when passing absolute URLs rather than protocol-relative…