github.com/ClickHouse/ch-go (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/ClickHouse/ch-go, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2025-1386 — CVSS 4.9 (medium): When using the ch-go library, under a specific condition when the query includes a large, uncompressed malicious external data, it is…