VDB
DEBIAN-CVE-2024-44905
DEBIAN-CVE-2024-44905
PUBLISHED
CVSS 6.5 MEDIUM
go-pg pg v10.13.0 was discovered to contain a SQL injection vulnerability via the component /types/append_value.go.
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | golang-gopkg-pg.v5 | 0, 5.3.3-3.1, 0 |
| Debian:12 | golang-gopkg-pg.v5 | 5.3.3-3.1, 0, 5.3.3-3.1 |
| Debian:13 | golang-gopkg-pg.v5 | 0, 5.3.3-3.1, 0 |
Timeline
- Jun 12, 2025 CVE Published
- Apr 28, 2026 CVE Updated