Every CVE whose affected-product data names Jackc Pgproto3, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-27304 — CVSS 9.8 (critical): pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can cause a single query or bind message to exceed 4…
CVE-2026-32286 — CVSS 7.5 (high): The DataRow.Decode function fails to properly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow…