<0.1% probability · 19.0th percentile — 2026-05-12
Affected versions
All unpatched versions of github.com/jackc/pgx/v5
Summary
This is a memory-safety vulnerability affecting the popular PostgreSQL driver pgx v5 for Go. Successful exploitation can lead to unauthorized memory access, remote code execution, or full service disruption. It carries a maximum 9.8 CVSS v3 score, indicating severe impact to affected systems.
Remediation
Organizations using this dependency should update to the latest patched version of github.com/jackc/pgx/v5 immediately. Use software composition analysis tools to identify vulnerable instances in your codebase and deployed applications.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.