Known Vulnerabilities for products from Pgbouncer

Listed below are 4 of the newest known vulnerabilities associated with the vendor "Pgbouncer".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-3935 When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when... 8.1 - HIGH 2021-11-22 2023-11-07
CVE-2021-3672 A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers... 5.6 - MEDIUM 2021-11-23 2024-01-05
CVE-2015-6817 PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows remote attackers to gain login access as auth_user via a... 8.1 - HIGH 2017-05-23 2020-11-03
CVE-2015-4054 PgBouncer before 1.5.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by sending a... 7.5 - HIGH 2017-05-23 2020-11-03

Known software with vulnerabilities from Pgbouncer

Type Vendor Product Version
ApplicationPgbouncerPgbouncer1.0

Popular searches for "Pgbouncer"

PgBouncer - lightweight connection pooler for PostgreSQL

www.pgbouncer.org

PgBouncer - lightweight connection pooler for PostgreSQL See the full details in the changelog. PgBouncer Also, PgBouncer Unix-domain sockets on Windows, matching the new capabilities of PostgreSQL 13. See the full details in the changelog.

pgbouncer.github.io pgbouncer.github.io Changelog PostgreSQL Microsoft Windows Unix domain socket Salted Challenge Response Authentication Mechanism Systemd GitHub Capability-based security Plain text SHA-2 Encryption Login Password Server-side Software release life cycle Tar (computing) Download Binary file Network socket User (computing)

PgBouncer - PostgreSQL wiki

wiki.postgresql.org/wiki/PgBouncer

PgBouncer - PostgreSQL wiki PgBouncer is a lightweight connection pooler for PostgreSQL. The information that used to be on this wiki page is contained on the PgBouncer

PostgreSQL Wiki Information Website Satellite navigation Login Menu (computing) Privacy policy Button (computing) Main Page Printer-friendly Web search engine Programming tool Mystery meat navigation Navigation Search engine technology Search engine indexing Hyperlink Source-code editor Source code

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].