CVE-2021-3935
HIGHpgbouncer < 1.16.1 - SQL Injection via Man-in-the-Middle Attack on Cert Authentication
Title source: llmDescription
When PgBouncer is configured to use "cert" authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of TLS certificate verification and encryption. This flaw affects PgBouncer versions prior to 1.16.1.
References (5)
Core 5
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=2021251
Release Notes, Vendor Advisory x_refsource_misc
http://www.pgbouncer.org/changelog.html#pgbouncer-116x
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPCV3KRDI5PLLLKADFVIOHACQJLZMLI/
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2022/02/msg00016.html
Scores
CVSS v3
8.1
EPSS
0.0008
EPSS Percentile
22.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-295
CWE-89
Status
published
Products (4)
debian/debian_linux
9.0
fedoraproject/fedora
35
pgbouncer/pgbouncer
< 1.16.1
redhat/enterprise_linux
7.0
Published
Nov 22, 2021
Tracked Since
Feb 18, 2026