CVE-2026-6665 | PgBouncer up to 1.25.1 strlcat stack-based overflow

May 9, 2026 Yanac

A vulnerability was found in PgBouncer up to 1.25.1 and classified as critical. The impacted element is the function strlcat. Executing a manipulation can lead to stack-based buffer overflow.

This vulnerability is registered as CVE-2026-6665. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2026-6667 | PgBouncer up to 1.25.1 Administration Console admin_users authorization
CVE-2026-41705 | Spring AI up to 1.0.6/1.1.5 MilvusVectorStore#doDelete expression language injection