CVE-2025-9636
BaseFortify
Publication date: 2025-09-04
Last updated on: 2025-09-11
Assigner: PostgreSQL
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| pgadmin | pgadmin_4 | to 9.7 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-346 | The product does not properly verify that the source of data or communication is valid. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in pgAdmin <= 9.7 is due to a Cross-Origin Opener Policy (COOP) misconfiguration in the OAuth 2.0 login flow. It allows an attacker to open the OAuth login page inside a malicious parent window and manipulate the OAuth handshake by redirecting it to their own OAuth client. The attacker can intercept OAuth tokens and trick the victim into authorizing access, leading to unauthorized account access and account takeover. [1]
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized account access, account takeover, data breaches involving sensitive user data such as emails, and privilege escalation through mail scope permissions. An attacker can read sensitive emails including password reset messages, enabling them to reset passwords and fully compromise user accounts. This can result in financial and reputational damage. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection involves monitoring for unusual OAuth login flows where the OAuth login page is opened within a parent window that can manipulate it. Specifically, look for OAuth login pages loaded without Cross-Origin Opener Policy (COOP) headers and check for suspicious redirects or navigation changes during OAuth authentication. Network monitoring tools can be used to inspect OAuth traffic for unexpected redirections or token exchanges. There are no specific commands provided in the resources. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include updating pgAdmin to a version later than 9.7 where the COOP misconfiguration is fixed, or applying patches that enforce proper Cross-Origin Opener Policy headers on the OAuth login pages. Additionally, restrict OAuth login pages from being embedded or controlled by other windows by implementing COOP headers to isolate the login context. Monitoring OAuth flows for suspicious activity and educating users about phishing risks can also help reduce impact. [1]