Lucene search
+L

128 matches found

Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.19 views

PT-2025-2689

Name of the Vulnerable Software and Affected Versions Google Go versions prior to 1.22.10 and 1.23.4 Description The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will...

10CVSS7.8AI score0.0263EPSS
Exploits9References178
Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.19 views

PT-2025-2692

Name of the Vulnerable Software and Affected Versions Google Go versions up to 1.22.10/1.23.4 Description A certificate with a URI which has an IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not...

10CVSS7.7AI score0.0263EPSS
Exploits9References284
CNNVD
CNNVD
added 2024/12/18 12:0 a.m.4 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google USA. A security vulnerability exists in Google Go that stems from the fact that an attacker can write an input to a parsing function that will be processed non-linearly based on it...

5.3CVSS6.2AI score0.00874EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.4 views

Google Go 后置链接漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. Google Go suffers from a back-linking vulnerability that stems from improper authentication, where the container runtime may incorrectly handle certain file paths, allowing a...

8.2CVSS6.7AI score0.00969EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/10/01 12:0 a.m.6 views

Google Go 输入验证错误漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. An input validation error vulnerability exists in Google Go that stems from the system not properly validating input, which allows a user to pass arbitrary parameters to the...

4.7CVSS7.8AI score0.00288EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/07/02 12:0 a.m.5 views

Google Go Security Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google USA. A security vulnerability exists in Google Go that stems from the presence of a limited directory traversal that allows reading arbitrary files on the system...

7.5CVSS6.8AI score0.00632EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/04 12:0 a.m.11 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google USA. A security vulnerability exists in Google Go. An attacker exploits the vulnerability to cause an HTTP/2 endpoint to read an arbitrary amount of header data by sending an...

7.5CVSS7.3AI score0.91969EPSS
Exploits1References11
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.6 views

Google Go Security Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go that stems from allowing users to enter a large number of characters, resulting in the allocation of a large amount of memory,...

6.5CVSS8.8AI score0.01165EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.4 views

Google Go Security Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go. An attacker exploits the vulnerability to inject unexpected content into templates...

5.4CVSS6.7AI score0.00795EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.5 views

Google Go Security Vulnerability

Google Go is a static strongly-typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go, which stems from the fact that verifying a certificate chain containing certificates with unknown public key algorithms will result i...

5.9CVSS9AI score0.00667EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.6 views

Google Go Security Vulnerability

Google Go is a static strongly-typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go, which stems from the fact that the protojson.Unmarshal function may enter an infinite loop when parsing certain invalid JSON...

7.5CVSS9AI score0.01262EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/12/05 12:0 a.m.7 views

Google Go Security Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go versions prior to 1.20, which stems from the fact that deleting PKCS1 padding can lead to the disclosure of timing information, which...

7.5CVSS6.5AI score0.0125EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/11/09 12:0 a.m.6 views

Google Go Security Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go that stems from the IsLocal function not properly detecting reserved device names...

5.3CVSS6.8AI score0.00903EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/09/08 12:0 a.m.4 views

Google Go Code Injection Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go version 1.21, which stems from a toolchain directive that can be used to execute scripts and binaries relative to the module root...

9.8CVSS7AI score0.01424EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/06/08 12:0 a.m.2 views

Google Go 代码注入漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go versions prior to 1.19.10, 1.20.0-0 through 1.20.5, which stems from the fact that when using cgo, the go command may execute...

9.8CVSS7.4AI score0.01837EPSS
Exploits0References11
CNNVD
CNNVD
added 2023/06/08 12:0 a.m.3 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go versions prior to 1.19.10, 1.20.0-0 through 1.20.5. An attacker can exploit the vulnerability to elevate privileges to read or write...

7.8CVSS7.2AI score0.00432EPSS
Exploits0References12
CNNVD
CNNVD
added 2023/03/08 12:0 a.m.4 views

Google Golang 安全漏洞

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

5.3CVSS6.9AI score0.00817EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/02/28 12:0 a.m.2 views

Google Golang 资源管理错误漏洞

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

7.5CVSS6.9AI score0.01231EPSS
Exploits0References20
CNNVD
CNNVD
added 2022/12/08 12:0 a.m.3 views

Google Golang 安全漏洞

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

5.3CVSS7AI score0.05623EPSS
Exploits0References40
CNNVD
CNNVD
added 2022/06/07 12:0 a.m.4 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. A security vulnerability exists in Google Go. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...

7.5CVSS7.5AI score0.02057EPSS
Exploits1References11
Rows per page
Query Builder