CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2022/08/10 8:15 p.m.•20 views

CVE-2022-30633

Uncontrolled recursion in Unmarshal in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via unmarshalling an XML document into a Go struct which has a nested field that uses the 'any' field tag...

OSV•added 2022/08/10 8:15 p.m.•30 views

CVE-2022-30635

ATTACKERKB•added 2022/08/10 8:15 p.m.•2 views

CVE-2022-30635

7.5CVSS5.8AI score0.00155EPSS

Exploits0References7Affected Software1

OSV•added 2022/08/10 8:15 p.m.•33 views

CVE-2022-30631

Uncontrolled recursion in Reader.Read in compress/gzip before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via an archive containing a large number of concatenated 0-length compressed files...

NVD•added 2022/08/10 8:15 p.m.•24 views

CVE-2022-30631

7.5CVSS0.00055EPSS

OSV•added 2022/08/10 8:15 p.m.•27 views

CVE-2022-28131

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document...

UbuntuCve•added 2022/08/10 8:15 p.m.•30 views

CVE-2022-30631

7.5CVSS6.8AI score0.00055EPSS

UbuntuCve•added 2022/08/10 8:15 p.m.•39 views

CVE-2022-30630

Uncontrolled recursion in Glob in io/fs before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path which contains a large number of path separators...

7.5CVSS6.8AI score0.00052EPSS

Prion•added 2022/08/10 8:15 p.m.•20 views

Design/Logic Flaw

5CVSS7.7AI score0.00055EPSS

UbuntuCve•added 2022/08/10 8:15 p.m.•23 views

CVE-2022-1962

Uncontrolled recursion in the Parse functions in go/parser before Go 1.17.12 and Go 1.18.4 allow an attacker to cause a panic due to stack exhaustion via deeply nested types or declarations...

5.5CVSS6.8AI score0.00005EPSS

Exploits1References3

OSV•added 2022/08/10 8:15 p.m.•0 views

UBUNTU-CVE-2022-28131

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document...

7.5CVSS6.7AI score0.00026EPSS

ATTACKERKB•added 2022/08/10 8:15 p.m.•0 views

CVE-2022-28131

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document...

7.5CVSS7.2AI score0.00026EPSS

Exploits0References9Affected Software1

Prion•added 2022/08/10 8:15 p.m.•22 views

Design/Logic Flaw

Uncontrolled recursion in Glob in path/filepath before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path containing a large number of path separators...

5CVSS7.5AI score0.0013EPSS

Prion•added 2022/08/10 8:15 p.m.•19 views

Design/Logic Flaw

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document...

5CVSS7.4AI score0.00026EPSS

Exploits0References5Affected Software2

Prion•added 2022/08/10 8:15 p.m.•14 views

Privilege escalation

Uncontrolled recursion in Glob in io/fs before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a path which contains a large number of path separators...

5CVSS7.5AI score0.00052EPSS

UbuntuCve•added 2022/08/10 8:15 p.m.•36 views

CVE-2022-30633

7.5CVSS6.8AI score0.0013EPSS

UbuntuCve•added 2022/08/10 8:15 p.m.•35 views

CVE-2022-30635

7.5CVSS6.8AI score0.00155EPSS

Prion•added 2022/08/10 8:15 p.m.•20 views

Code injection

5CVSS7.5AI score0.0013EPSS