Detections
Analytics
pgAdmin 9.x < 9.16 Read-Only Transaction Bypass (CVE-2026-12045)
critical Nessus Plugin ID 322418
Language:
Synopsis
The pgAdmin instance installed on the remote host is affected by a read-only transaction bypass vulnerability.Description
The version of pgAdmin installed on the remote host is 9.x prior to 9.16. It is, therefore, affected by a read-only transaction bypass vulnerability:- The AI Assistant's execute_sql_query tool accepts multi-statement payloads. A single COMMIT followed by a write-statement terminates the enclosing BEGIN TRANSACTION READ ONLY wrapper and runs subsequent statements in autocommit mode. On a superuser-connected session this chains to operating-system command execution on the database host. (CVE-2026-12045)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade pgAdmin to version 9.16 or later.See Also
Plugin Details
Severity: Critical
ID: 322418
File Name: pgadmin_CVE-2026-12045.nasl
Version: 1.2
Type: Local
Agent: windows, macosx, unix
Family: Databases
Published: 6/24/2026
Updated: 6/25/2026
Configuration: Enable thorough checks (optional)
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 8.5
Temporal Score: 6.3
Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2026-12045
CVSS v3
Risk Factor: Critical
Base Score: 9
Temporal Score: 7.8
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CVSS v4
Risk Factor: Critical
Base Score: 9.4
Threat Score: 7.6
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Vulnerability Information
CPE: cpe:/a:postgresql:pgadmin_4
Required KB Items: installed_sw/PostgreSQL pgAdmin4
Exploit Ease: No known exploits are available
Patch Publication Date: 6/18/2026
Vulnerability Publication Date: 6/18/2026
Reference Information
CVE: CVE-2026-12045