CVE-2024-3116

HIGH

pgAdmin4 <= 8.4 - Remote Code Execution via Validate Binary Path API

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-3116. PoCs published by TechieNeurons, M.Selim Karahan, Mustafa Mutlu, Ayoub Mokhtar, including Metasploit module exploits/windows/http/pgadmin_binary_path_api.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2024-3116, a Remote Code Execution (RCE) vulnerability in pgAdmin <= 8.4 on Windows. The exploit involves uploading a malicious binary disguised as a PostgreSQL tool and triggering its execution via pgAdmin's binary path configuration.

Description

pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the underlying data.

Exploits (2)

nomisec WORKING POC 12 stars
by TechieNeurons · poc
https://github.com/TechieNeurons/CVE-2024-3116_RCE_in_pgadmin_8.4

This repository contains a functional exploit for CVE-2024-3116, a Remote Code Execution (RCE) vulnerability in pgAdmin <= 8.4 on Windows. The exploit involves uploading a malicious binary disguised as a PostgreSQL tool and triggering its execution via pgAdmin's binary path configuration.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: pgAdmin <= 8.4
Auth required
Prerequisites: Valid pgAdmin user credentials · Windows target with pgAdmin <= 8.4 · Cross-compiler for Windows binaries (mingw-w64) · Netcat listener for reverse shell
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by M.Selim Karahan, Mustafa Mutlu, Ayoub Mokhtar · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/pgadmin_binary_path_api.rb

This Metasploit module exploits CVE-2024-3116 in pgAdmin <= 8.4 by uploading a malicious executable via the file manager API and triggering execution through the validate binary path endpoint. It supports both authenticated and unauthenticated exploitation on Windows targets.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: pgAdmin <= 8.4
No auth needed
Prerequisites: Network access to pgAdmin web interface · Windows target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 7.4
EPSS 0.9068
EPSS Percentile 99.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-77
Status published
Products (3)
fedoraproject/fedora 39
pgadmin/pgadmin_4 < 8.4
pypi/pgadmin4 0 - 8.5PyPI
Published Apr 04, 2024
Tracked Since Feb 18, 2026