CVE Alert: CVE-2025-47907
Vulnerability Summary: CVE-2025-47907
Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the expected results with those of another query, causing the call to Scan to return either unexpected results from the other query or an error.
Affected Endpoints:
No affected endpoints listed.
Published Date:
8/7/2025, 4:15:30 PM
🔥 CVSS Score:
Exploit Status:
Not ExploitedReferences:
- https://go.dev/cl/693735
- https://go.dev/issue/74831
- https://groups.google.com/g/golang-announce/c/x5MKroML2yM
- https://pkg.go.dev/vuln/GO-2025-3849
Recommended Action:
No proposed action available. Please refer to vendor documentation for updates.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
