External risk intelligence

pgAdmin 4 allows attackers to read sensitive files or access internal services

CVE advisorySeverity: HIGH (CVSS 7.1)

CVE-2026-7817

An internal attacker exploiting pgAdmin 4 could read sensitive files or access internal systems. This matters to the business as it could lead to unauthorized access or compromise of the system.

2Halo Surface Signal

Server-Side Request Forgery

Pgadmin 4

9.13 to before 9.15

External exposure likelihood

Halo Surface Signal score for CVE-2026-7817

pgAdmin 4 is a database administration tool typically run locally in desktop mode or hosted in server mode on internal networks behind firewalls or VPNs. Exposing these administrative interfaces directly to the public internet is highly discouraged and uncommon in secure real-world deployments.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Horizon Alert

Summary of the vulnerability and why it matters

This vulnerability in pgAdmin 4 allows an authenticated user to read arbitrary server files or make the application send requests to internal systems. This could expose sensitive information or allow access to internal services.

  • Can expose sensitive files.
  • Can target internal network services.

Attack Path

How an attacker could exploit the issue

An attacker with authenticated access to pgAdmin 4 could exploit these vulnerabilities to read arbitrary files from the server or perform server-side request forgery attacks. By manipulating API configuration settings, they could gain access to sensitive system files or redirect pgAdmin to internal network resources, potentially leading to further compromise.

  • Requires authenticated access.
  • Targets LLM API configuration.
  • Exploits chat and model-list endpoints.

Live Threat

Current exploitation, exposure, and threat context

Attackers are unlikely to prioritize weaponizing this vulnerability. pgAdmin 4 is primarily used for database administration, often on local machines or internal networks. Exploiting these flaws requires prior authentication, and public-facing deployments are generally discouraged due to the sensitive nature of database management.

  • Exploitation requires authentication.
  • Uncommon in public deployments.
  • No public exploit code.

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

Prioritize patching pgAdmin 4 to version 9.15 or later to address local file inclusion and SSRF vulnerabilities. If immediate patching is not feasible, restrict access to pgAdmin's LLM API configuration endpoints and monitor for suspicious outbound network connections.

  • Apply patch version 9.15.
  • Block external access to pgAdmin.
  • Monitor LLM API endpoint traffic.

Frequently asked questions

What is pgAdmin 4 and what is it used for?

pgAdmin 4 is a popular open-source administration and development platform for PostgreSQL databases. It provides a graphical interface for managing databases, writing SQL queries, and performing various database administration tasks, often used by developers and database administrators.

What is the weakness in CVE-2026-7817?

The weakness in CVE-2026-7817 is classified as Local File Inclusion (LFI) and Server-Side Request Forgery (SSRF). This means an attacker could trick pgAdmin 4 into reading files it shouldn't have access to or making it send requests to internal network locations.

How can an attacker trigger the vulnerability in pgAdmin 4?

An attacker needs authenticated access to pgAdmin 4. They can trigger the vulnerability by manipulating settings for LLM API configuration, specifically by supplying malicious values for `api_key_file` to read arbitrary files or `api_url` to force requests to internal services.

Who needs to care about this CVE and why?

Organizations using pgAdmin 4 should care. While direct internet exposure is unlikely, if pgAdmin 4 is accessible from internal networks, an authenticated user could potentially access sensitive files or internal systems, posing a risk to data confidentiality and internal network security.

What is the first step to address CVE-2026-7817?

The primary step is to update pgAdmin 4 to version 9.15 or later. This patch specifically addresses the vulnerabilities that allow for local file inclusion and server-side request forgery. If immediate patching isn't possible, restricting access to the LLM API configuration is advised.

References

Sources and related resources

Primary sources: NVD, CVE.org.

NVDPublished Modified