Lucene search
HistorySep 06, 2024 - 9:15 p.m.
CVE-2024-34158
parse build tag stack
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
16.3%
Calling Parse on a “// +build” build tag line with deeply nested expressions can cause a panic due to stack exhaustion.
Related
osv
osv
CGA-8xvg-4rv4-xmw4
2024-09-10 10:05:02
CGA-47m6-84wh-xf65
2024-09-11 20:19:51
CGA-h5gx-26j8-c9qf
2024-09-10 14:09:42
debiancve
debiancve
CVE-2024-34158
2024-09-06 21:15:12
cve
cve
CVE-2024-34158
2024-09-06 21:15:12
redhatcve
redhatcve
CVE-2024-34158
2024-09-06 23:42:26
wolfi
wolfi
CVE-2024-34158 vulnerabilities
2024-09-19 21:18:36
alpinelinux
alpinelinux
CVE-2024-34158
2024-09-06 21:15:12
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
16.3%
Related for NVD:CVE-2024-34158