Broadcom Bitnamipgpool
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Broadcom Bitnamipgpool.
By the Year
In 2026 there have been 0 vulnerabilities in Broadcom Bitnamipgpool. Last year, in 2025 Bitnamipgpool had 1 security vulnerability published. Right now, Bitnamipgpool is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 7.50 |
It may take a day or so for new Bitnamipgpool vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Broadcom Bitnamipgpool Security Vulnerabilities
Bitnami Pgpool/PGHA: Unauthenticated repmgr User Enables DB Access
CVE-2025-22248
7.5 - High
- May 13, 2025
The bitnami/pgpool Docker image, and the bitnami/postgres-ha k8s chart, under default configurations, comes with an 'repmgr' user that allows unauthenticated access to the database inside the cluster. The PGPOOL_SR_CHECK_USER is the user that Pgpool itself uses to perform streaming replication checks against nodes, and should not be at trust level. This allows to log into a PostgreSQL database using the repgmr user without authentication. If Pgpool is exposed externally, a potential attacker could use this user to get access to the service. This is also present within the bitnami/postgres-ha Kubernetes Helm chart.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Broadcom Bitnamipgpool or by Broadcom? Click the Watch button to subscribe.
