https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 31 May 2026 05:33:37 +0000 https://vulnerability.circl.lu/sighting/1a10ca3c-c17a-4b3b-92a8-bce95c6660bb/export {"uuid": "1a10ca3c-c17a-4b3b-92a8-bce95c6660bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlgvniz4zf2t", "content": "\ud83d\udfe0 CVE-2026-6664 - High (7.5)\n\nAn integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-6664/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-09T18:44:24.357170Z"} {"uuid": "1a10ca3c-c17a-4b3b-92a8-bce95c6660bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlgvniz4zf2t", "content": "\ud83d\udfe0 CVE-2026-6664 - High (7.5)\n\nAn integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-6664/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-09T18:44:24.357170Z"} https://vulnerability.circl.lu/sighting/1a10ca3c-c17a-4b3b-92a8-bce95c6660bb/export Sat, 09 May 2026 18:44:24 +0000 https://vulnerability.circl.lu/sighting/f8fb9d2f-e5cb-461c-a989-80565e32f947/export {"uuid": "f8fb9d2f-e5cb-461c-a989-80565e32f947", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "Telegram/uli2GhURI2CJbk1kAeqzAiHzDld1f3ZduT020MgDdyP-5f4", "content": "", "creation_timestamp": "2026-05-12T19:00:12.000000Z"} {"uuid": "f8fb9d2f-e5cb-461c-a989-80565e32f947", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "Telegram/uli2GhURI2CJbk1kAeqzAiHzDld1f3ZduT020MgDdyP-5f4", "content": "", "creation_timestamp": "2026-05-12T19:00:12.000000Z"} https://vulnerability.circl.lu/sighting/f8fb9d2f-e5cb-461c-a989-80565e32f947/export Tue, 12 May 2026 19:00:12 +0000 https://vulnerability.circl.lu/sighting/b8d3c978-35b2-4901-9e34-5de551c1567b/export {"uuid": "b8d3c978-35b2-4901-9e34-5de551c1567b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "Telegram/gmqsYJuL8AU1ZXxnDjjWQKLCPTC0oBwWP4DJHqZuZarsDHs", "content": "", "creation_timestamp": "2026-05-12T21:00:04.000000Z"} {"uuid": "b8d3c978-35b2-4901-9e34-5de551c1567b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "Telegram/gmqsYJuL8AU1ZXxnDjjWQKLCPTC0oBwWP4DJHqZuZarsDHs", "content": "", "creation_timestamp": "2026-05-12T21:00:04.000000Z"} https://vulnerability.circl.lu/sighting/b8d3c978-35b2-4901-9e34-5de551c1567b/export Tue, 12 May 2026 21:00:04 +0000 https://vulnerability.circl.lu/sighting/c1578d7f-ce33-41a2-89c8-4f8a76eaae01/export {"uuid": "c1578d7f-ce33-41a2-89c8-4f8a76eaae01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://t.me/bdufstecru/3160", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0439 mbuf_get_bytes() \u0438 mbuf_get_chars() \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043f\u0443\u043b\u0430 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f \u0432 PostgreSQL PgBouncer \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u043f\u0430\u043a\u0435\u0442\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 SCRAM\n\nBDU:2026-06724\nCVE-2026-6664\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.pgbouncer.org/changelog.html#pgbouncer-125x", "creation_timestamp": "2026-05-15T12:56:28.000000Z"} {"uuid": "c1578d7f-ce33-41a2-89c8-4f8a76eaae01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://t.me/bdufstecru/3160", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0439 mbuf_get_bytes() \u0438 mbuf_get_chars() \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043f\u0443\u043b\u0430 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f \u0432 PostgreSQL PgBouncer \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u043f\u0430\u043a\u0435\u0442\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 SCRAM\n\nBDU:2026-06724\nCVE-2026-6664\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.pgbouncer.org/changelog.html#pgbouncer-125x", "creation_timestamp": "2026-05-15T12:56:28.000000Z"} https://vulnerability.circl.lu/sighting/c1578d7f-ce33-41a2-89c8-4f8a76eaae01/export Fri, 15 May 2026 12:56:28 +0000 https://vulnerability.circl.lu/sighting/405e9c1b-50d6-4daa-9330-afba6bf20f14/export {"uuid": "405e9c1b-50d6-4daa-9330-afba6bf20f14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mmpk2g736r2r", "content": "PgBouncer 1.25.2 fixes CVE-2026-6664: pre-auth integer overflow in the SCRAM packet parser. CVSS 7.5, DoS only, but unauthenticated and network-reachable.\n\nThe vendor workaround is \"don't use SCRAM,\" which isn't a workaround. Patch.\n\nwww.pgbouncer.org/changelog.html\n\npgexperts.com", "creation_timestamp": "2026-05-25T22:36:01.873223Z"} {"uuid": "405e9c1b-50d6-4daa-9330-afba6bf20f14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mmpk2g736r2r", "content": "PgBouncer 1.25.2 fixes CVE-2026-6664: pre-auth integer overflow in the SCRAM packet parser. CVSS 7.5, DoS only, but unauthenticated and network-reachable.\n\nThe vendor workaround is \"don't use SCRAM,\" which isn't a workaround. Patch.\n\nwww.pgbouncer.org/changelog.html\n\npgexperts.com", "creation_timestamp": "2026-05-25T22:36:01.873223Z"} https://vulnerability.circl.lu/sighting/405e9c1b-50d6-4daa-9330-afba6bf20f14/export Mon, 25 May 2026 22:36:01 +0000 https://vulnerability.circl.lu/sighting/30881bc4-1062-4136-ad95-47f99a3307fb/export {"uuid": "30881bc4-1062-4136-ad95-47f99a3307fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mms2jdkrgm2m", "content": "CVE-2026-6664: integer overflow in PgBouncer SCRAM packet parsing. Pre-authentication. Any TCP connection can crash the pooler. CVSS 7.5.\n\nnvd.nist.gov/vuln/detail/...\n\nIf your pooler tier quietly goes years between patches, we can help with that. \n\npgexperts.com", "creation_timestamp": "2026-05-26T22:36:01.637472Z"} {"uuid": "30881bc4-1062-4136-ad95-47f99a3307fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mms2jdkrgm2m", "content": "CVE-2026-6664: integer overflow in PgBouncer SCRAM packet parsing. Pre-authentication. Any TCP connection can crash the pooler. CVSS 7.5.\n\nnvd.nist.gov/vuln/detail/...\n\nIf your pooler tier quietly goes years between patches, we can help with that. \n\npgexperts.com", "creation_timestamp": "2026-05-26T22:36:01.637472Z"} https://vulnerability.circl.lu/sighting/30881bc4-1062-4136-ad95-47f99a3307fb/export Tue, 26 May 2026 22:36:01 +0000 https://vulnerability.circl.lu/sighting/0d0646aa-19d3-4ed0-9d3a-62892b1c797b/export {"uuid": "0d0646aa-19d3-4ed0-9d3a-62892b1c797b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mms7m5dgey2r", "content": "PgBouncer 1.25.2 fixes four CVEs. Two of them (CVE-2026-6664 and CVE-2026-6665) are reachable pre-auth and crash the pooler from a single SCRAM packet.\n\nIf your pooler is behind an unfiltered LB, patch this week.\n\nwww.pgbouncer.org/2026/05/pgbo...\n\npgexperts.com", "creation_timestamp": "2026-05-27T00:07:11.647366Z"} {"uuid": "0d0646aa-19d3-4ed0-9d3a-62892b1c797b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6664", "type": "seen", "source": "https://bsky.app/profile/pgexperts.bsky.social/post/3mms7m5dgey2r", "content": "PgBouncer 1.25.2 fixes four CVEs. Two of them (CVE-2026-6664 and CVE-2026-6665) are reachable pre-auth and crash the pooler from a single SCRAM packet.\n\nIf your pooler is behind an unfiltered LB, patch this week.\n\nwww.pgbouncer.org/2026/05/pgbo...\n\npgexperts.com", "creation_timestamp": "2026-05-27T00:07:11.647366Z"} https://vulnerability.circl.lu/sighting/0d0646aa-19d3-4ed0-9d3a-62892b1c797b/export Wed, 27 May 2026 00:07:11 +0000