Flaw in golang: cmd/go allows arbitrary command execution at build time, affecting Windows with cgo and Linux/Unix with specific PATH settings
Reporter | Title | Published | Views | Family All 159 |
---|---|---|---|---|
RedhatCVE | CVE-2020-28367 | 13 Nov 202018:14 | – | redhatcve |
OSV | BIT-golang-2020-28367 | 6 Mar 202411:07 | – | osv |
OSV | Arbitrary code execution via the go command with cgo in cmd/go | 28 Jul 202217:24 | – | osv |
OSV | CVE-2020-28367 | 18 Nov 202017:15 | – | osv |
OSV | BIT-golang-2021-3115 | 6 Mar 202411:05 | – | osv |
OSV | Arbitrary code injection via the go command with cgo on Windows in cmd/go | 14 Apr 202120:04 | – | osv |
OSV | CVE-2021-3115 | 26 Jan 202118:16 | – | osv |
OSV | Moderate: go-toolset:rhel8 security, bug fix, and enhancement update | 18 May 202105:59 | – | osv |
OSV | Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.14.0 and security update | 18 Sep 202404:17 | – | osv |
OSV | Red Hat Security Advisory: go-toolset:rhel8 security, bug fix, and enhancement update | 18 Sep 202404:18 | – | osv |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo