Critical severity9.8NVD Advisory· Published May 19, 2025· Updated Apr 15, 2026

CVE-2025-46801

Description

Pgpool-II provided by PgPool Global Development Group contains an authentication bypass by primary weakness vulnerability. if the vulnerability is exploited, an attacker may be able to log in to the system as an arbitrary user, allowing them to read or tamper with data in the database, and/or disable the database.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN06238225/nvd
lists.debian.org/debian-lts-announce/2025/10/msg00014.htmlnvd
www.pgpool.net/mediawiki/index.php/Main_Pagenvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000