Vulnerabilities

CVE-2026-6664

by Fred · 09/05/2026

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet.

More information : https://www.pgbouncer.org/changelog.html#pgbouncer-125x

Similar

Tags: Cybersecurity Alert