CVE-2025-12819 | PgBouncer up to 1.25.0 StartupMessage search_path untrusted search path

A vulnerability, which was classified as problematic, was found in PgBouncer up to 1.25.0. Affected by this vulnerability is an unknown functionality of the component StartupMessage. The manipulation of the argument search_path results in untrusted search path.

This vulnerability is cataloged as CVE-2025-12819. The attack must be initiated from a local position. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More