cbcvebase.
CVE-2026-6664
published 2026-05-09

CVE-2026-6664: An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote…

PriorityP180high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
0.70%
48.4th percentile
An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet.

Affected

1 ranges
VendorProductVersion rangeFixed in
pgbouncerpgbouncer< 1.25.21.25.2

Detection & IOCsextracted from sources · hover to see the quote

  • Target service is PgBouncer; attack vector is a malformed SCRAM authentication packet sent during the authentication phase, exploiting an integer overflow in network packet parsing code to bypass a boundary check and crash the process
  • No authentication required to trigger the crash — monitor for unauthenticated connections to PgBouncer that send malformed/unexpected data during the SCRAM authentication handshake
  • ·Only PgBouncer versions before 1.25.2 are vulnerable; upgrade to 1.25.2 or later to remediate
  • ·The vulnerability is present in the SCRAM authentication packet parsing path; deployments using SCRAM authentication are directly exposed to unauthenticated exploitation

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.