← voltar
CVE-2025-46801

CVE-2025-46801

CVSS 9.3 CRITICALEPSS 0.8%CWE-305
Pgpool-II provided by PgPool Global Development Group contains an authentication bypass by primary weakness vulnerability. if the vulnerability is exploited, an attacker may be able to log in to the system as an arbitrary user, allowing them to read or tamper with data in the database, and/or disable the database.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
PgPool Global Development Group · Pgpool-II

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://jvn.jp/en/jp/JVN06238225/https://lists.debian.org/debian-lts-announce/2025/10/msg00014.htmlhttps://www.pgpool.net/mediawiki/index.php/Main_Page#News