Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pgbouncer pgbouncer vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2015-4054
PgBouncer prior to 1.5.5 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) by sending a password packet before a startup packet.
Pgbouncer Pgbouncer
8.1
CVSSv3
CVE-2015-6817
PgBouncer 1.6.x prior to 1.6.1, when configured with auth_user, allows remote malicious users to gain login access as auth_user via an unknown username.
Pgbouncer Pgbouncer 1.6
8.1
CVSSv3
CVE-2021-3935
When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of TLS certificate verification and encryption. This flaw affects PgBouncer versions before 1...
Pgbouncer Pgbouncer
Redhat Enterprise Linux 7.0
Fedoraproject Fedora 35
Debian Debian Linux 9.0
NA
CVE-2012-4575
The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote malicious users to cause a denial of service (daemon outage) via a long database name in a request.
Pgbouncer Project Pgbouncer 1.5.2
5.6
CVSSv3
CVE-2021-3672
A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers) can lead to output of wrong hostnames which might potentially lead to Domain Hijacking. The highest threat from this vulnerability is to confidentiality ...
C-ares Project C-ares
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux 7.7
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Tus 8.4
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.2
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.4
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.1
Redhat Enterprise Linux For Power Little Endian Eus 8.2
Redhat Enterprise Linux For Ibm Z Systems Eus 8.2
Redhat Enterprise Linux For Ibm Z Systems Eus 8.1
Redhat Enterprise Linux For Power Little Endian Eus 8.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started