CVE-2015-6817

Published May 23rd, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.8

MEDIUM

Affected

1

PROJECT

Description

PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows remote attackers to gain login access as auth_user via an unknown username.

pgbouncer/pgbouncer

lightweight connection pooler for PostgreSQL

GitHub

4.14K