CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

OSV•added 2026/05/17 8:17 p.m.•5 views

SUSE-SU-2026:21804-1 Security update for go1.26

This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...

7.5CVSS6AI score0.00054EPSS

Exploits0References25

SUSE Linux•added 2026/05/14 10:34 p.m.•3 views

Security update for go1.25

This update for go1.25 fixes the following issues Security issues: CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. CVE-2026-39817: cmd/go: "go tool pack" does not...

7.5CVSS5.9AI score0.00054EPSS

Exploits0References48

OSV•added 2026/05/11 5:44 a.m.•5 views

BIT-GOLANG-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy GOMODPROXY or checksum database GOSUMDB. A malicious module proxy can serve altered versions o...

7.5CVSS5.8AI score0.00008EPSS

Exploits0References5

SUSE CVE•added 2026/05/09 2:42 a.m.•7 views

SUSE CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

NVD•added 2026/05/07 8:16 p.m.•6 views

CVE-2026-42501

7.5CVSS0.00008EPSS

Exploits0References4

OSV•added 2026/05/07 8:16 p.m.•2 views

UBUNTU-CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References8

UbuntuCve•added 2026/05/07 8:16 p.m.•4 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References7

Cvelist•added 2026/05/07 7:41 p.m.•30 views

CVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

0.00008EPSS

Exploits0References4

ATTACKERKB•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501

5.8AI score0.00008EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

5.8AI score0.00008EPSS

Exploits0References4

AlpineLinux•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0

OSV•added 2026/05/07 7:21 p.m.•6 views

GO-2026-4984 Malicious module proxy can bypass checksum database in cmd/go

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

Positive Technologies•added 2026/05/07 12:0 a.m.•4 views

PT-2026-38570

Name of the Vulnerable Software and Affected Versions Go affected versions not specified Description A flaw in the go command's validation of module checksums allows a malicious module proxy to bypass checksum database validation. This occurs when the checksum database returns a successful respon...

7.5CVSS5.9AI score0.00008EPSS

Exploits0References25

Filippo.io•added 2026/02/12 1:48 p.m.•4 views

Inspecting the Source of Go Modules

Go has indisputably the best package integrity story of any programming language ecosystem. The Go Checksum Database guarantees that every Go client in the world is using the same source for a given Go module and version, forever. It works despite the decentralized nature of Go modules, which can...

5.8AI score

Exploits0

Filippo.io•added 2020/03/15 6:18 p.m.•56 views

Install Go tools from modules with brew-gomod

As of Go 1.14, modules are ready for production. Compared to GOPATH, they make it much easier to keep workspaces clean by managing dependencies out of sight, and by letting you clone projects anywhere. However, there is no good way to simply install a Go binary from source, yet. The core reason f...

7.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by