EUVD-2022-7707

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Golang language tag parsing vulnerability can cause panic and denial-of-service attack risks.

Reporter	Title	Published	Views	Family All 116
IBM Security Bulletins	Security Bulletin: Astronomer with IBM is vulnerable to several vulnerabilities	11 Aug 202513:46	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in Node.js (CVE-2022-43548, CVE-2020-7676, CVE-2021-42550, CVE-2021-38561, CVE-2022-32149)	22 Jun 202320:24	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Standard is vulnerable to multiple vulnerabilities in Golang Go.	14 Feb 202321:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	16 Jun 202315:20	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium Insights is affected by multiple vulnerabilities	8 Apr 202220:24	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities that affects IBM Db2 Data Management Console (CVE-2021-3121, CVE-2021-38561, CVE-2023-43804)	23 Jul 202520:12	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Golang Go and MinIO may affect IBM Spectrum Protect Plus Container Backup and Restore for Kubernetes and Red Hat OpenShift (CVE-2022-24842,CVE-2021-38561,CVE-2021-43565,CVE-2022-28327,CVE-2022-24675,CVE-2022-27536)	29 Jun 202222:44	–	ibm
IBM Security Bulletins	Security Bulletin: Due to use of golang.org/x/text, IBM Database Operator for Foundationdb is vulnerable to denial of service attack.	16 Mar 202615:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in Golang Go.	14 Feb 202321:04	–	ibm
IBM Security Bulletins	Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go CVE-2021-38561	8 Aug 202210:06	–	ibm

[
  {
    "enisaIdVendor": [
      {
        "id": "91494eac-3d2c-31b8-8a5d-1a750585e9b7",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0970beca-0a9a-3b5b-9cd6-b474db40b5db",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-38561
deps	www.deps.dev/advisory/OSV/GO-2021-0113
go	www.go.dev/cl/340830
go	www.go.googlesource.com/text/+/383b2e75a7a4198c42f8f87833eefb772868a56f
groups	www.groups.google.com/g/golang-announce
pkg	www.pkg.go.dev/golang.org/x/text/language
pkg	www.pkg.go.dev/vuln/GO-2021-0113
access	www.access.redhat.com/errata/RHSA-2022:5525
access	www.access.redhat.com/errata/RHSA-2022:5556
access	www.access.redhat.com/errata/RHSA-2022:5070

03 Oct 2025 20:07Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00053

SSVC