UBUNTU-CVE-2023-1907

Source
https://ubuntu.com/security/CVE-2023-1907
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-1907.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-1907
Related
  • CVE-2023-1907
Published
2025-01-09T08:15:00Z
Modified
2025-01-17T08:22:01Z
Summary
[none]
Details

A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to another user's session if multiple connection attempts occur simultaneously.

References

Affected packages

Ubuntu:Pro:16.04:LTS / pgadmin3

Package

Name
pgadmin3
Purl
pkg:deb/ubuntu/pgadmin3@1.22.0-1?arch=source&distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.20.0~beta2-1build1
1.20.0-3
1.22.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / pgadmin3

Package

Name
pgadmin3
Purl
pkg:deb/ubuntu/pgadmin3@1.22.2-4?arch=source&distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.22.2-1
1.22.2-2
1.22.2-3
1.22.2-4

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / pgadmin3

Package

Name
pgadmin3
Purl
pkg:deb/ubuntu/pgadmin3@1.22.2-6build1?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.22.2-5build1
1.22.2-6
1.22.2-6build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}