Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

168 matches found

CVE
CVEadded 2022/08/09 8:16 p.m.388 views

CVE-2022-30635

CVE-2022-30635: Uncontrolled recursion in Decoder.Decode in encoding/gob before Go 1.17.12 and Go 1.18.4 can cause a panic due to stack exhaustion when processing deeply nested structures. The description notes this as a vulnerability in Go’s gob decoding. Affected component: encoding/gob; root c...

7.5CVSS7.7AI score0.01403EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessusadded 2022/08/04 12:0 a.m.47 views

Oracle Linux 8 : go-toolset:ol8 (ELSA-2022-5775)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5775 advisory. delve 1.7.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.7.2-1 - Rebase to 1.7.2 - Related: rhbz2014088 golang 1.17.12-1 - Updat...

7.5CVSS7.2AI score0.01875EPSS
Exploits3References10
RedHat Linux
RedHat Linuxadded 2022/08/02 9:56 a.m.4 views

golang: encoding/gob: stack exhaustion in Decoder.Decode

A flaw was found in golang. When calling Decoder, Decode on a message that contains deeply nested structures, a panic can occur due to stack exhaustion and allows an attacker to impact system availability...

7.5CVSS6.6AI score0.01403EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2022/08/01 12:10 p.m.3 views

golang: encoding/gob: stack exhaustion in Decoder.Decode

A flaw was found in golang. When calling Decoder, Decode on a message that contains deeply nested structures, a panic can occur due to stack exhaustion and allows an attacker to impact system availability...

7.5CVSS6.6AI score0.01403EPSS
Exploits0References6
Tenable Nessus
Tenable Nessusadded 2022/08/01 12:0 a.m.42 views

RHEL 9 : go-toolset and golang (RHSA-2022:5799)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5799 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go...

7.5CVSS7.4AI score0.05292EPSS
Exploits6References25
Tenable Nessus
Tenable Nessusadded 2022/08/01 12:0 a.m.51 views

CentOS 8 : go-toolset:rhel8 (CESA-2022:5775)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2022:5775 advisory. - golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 - golang: go/parser: stack exhaustion in all Parse functions...

7.5CVSS7.3AI score0.01875EPSS
Exploits4References10
FreeBSD
FreeBSDadded 2022/07/14 12:0 a.m.82 views

go -- decoding big.Float and big.Rat can panic

The Go project reports: encoding/gob & math/big: decoding big.Float and big.Rat can panic Decoding big.Float and big.Rat types can panic if the encoded message is too short...

7.5CVSS6.8AI score0.0198EPSS
Exploits1References1
FreeBSD
FreeBSDadded 2022/07/12 12:0 a.m.33 views

go -- multiple vulnerabilities

The Go project reports: net/http: improper sanitization of Transfer-Encoding header The HTTP/1 client accepted some invalid Transfer-Encoding headers as indicating a "chunked" encoding. This could potentially allow for request smuggling, but only if combined with an intermediate server that also...

7.5CVSS0.6AI score0.01875EPSS
Exploits3References1
Rows per page
Query Builder