pgAdmin LDAP Authentication TLS Certificate Verification Bypass Vulnerability

A vulnerability exists in pgAdmin versions through 9.9 within the LDAP authentication process, allowing attackers to bypass TLS certificate validation. This flaw enables the acceptance of self-signed or invalid server certificates, potentially leading to a man-in-the-middle attack where LDAP credentials can be intercepted and directory responses manipulated. The issue arises because the LDAP TLS client does not validate server certificates unless a certificate authority, client certificate, and client key are all configured. In environments like Active Directory, where mutual TLS validation is typically disabled, this vulnerability can be exploited.

Impact

Exploitation allows on-path attackers to intercept TLS connections using a fraudulent certificate, proxying traffic to steal LDAP bind credentials and alter directory responses.

Remediation

Users can update to pgAdmin version 9.10, where this vulnerability has been addressed.