Lucene search
K

16 matches found

Redos
Redos
added 2024/12/03 12:0 a.m.14 views

ROS-20241203-15

Go programming language vulnerability is related to errors in handling whitespace characters in context JavaScript. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity, and availability of protected information. affect the confidentiality,...

9.8CVSS7.2AI score0.03015EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/30 12:0 a.m.18 views

CBL Mariner 2.0 Security Update: golang (CVE-2022-23806)

The version of golang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-23806 advisory. - Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true...

9.1CVSS8AI score0.03015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.29 views

Debian dla-3395 : golang-1.11 - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3395 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3395-2 [email protected] https://www.debian.org/lts/security/...

5.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/03 12:0 a.m.36 views

SUSE SLES12 Security Update : google-guest-agent (SUSE-SU-2023:0603-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0603-1 advisory. Updated to version 20230222.00 bsc1202100, bsc1202101 and bumped go API version to 1.18 to address the following bsc1208723: -...

9.8CVSS7.2AI score0.10299EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2022/06/15 12:0 a.m.50 views

EulerOS 2.0 SP9 : golang (EulerOS-SA-2022-1865)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption...

9.1CVSS7.3AI score0.03255EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/06/07 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-1805)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.9AI score0.03255EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/06 12:0 a.m.33 views

EulerOS 2.0 SP10 : golang (EulerOS-SA-2022-1805)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption...

9.1CVSS7.3AI score0.03255EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.40 views

Debian DLA-2985-1 : golang-1.7 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2985 advisory. Several vulnerabilities were discovered in the Go programming language. An attacker could trigger a denial-of-service DoS or invalid cryptographic computation...

9.1CVSS7.4AI score0.03255EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.44 views

Debian DLA-2986-1 : golang-1.8 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2986 advisory. - Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption. CVE-2022-23772 -...

9.1CVSS7.3AI score0.03255EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/04/25 12:0 a.m.36 views

EulerOS 2.0 SP5 : golang (EulerOS-SA-2022-1534)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header falsely designating that many files are present can cause ...

9.1CVSS7AI score0.06934EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/03/05 12:0 a.m.54 views

openSUSE 15 Security Update : go1.17 (openSUSE-SU-2022:0723-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0723-1 advisory. - Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption...

9.1CVSS8.1AI score0.03015EPSS
Exploits0References11
NVD
NVD
added 2022/02/11 1:15 a.m.28 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element...

9.1CVSS0.03015EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2022/02/11 1:15 a.m.6 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element...

9.1CVSS7.2AI score0.03015EPSS
Exploits0References8
OSV
OSV
added 2022/02/11 12:0 a.m.36 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element...

9.1CVSS6.7AI score0.03015EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2022/02/11 12:0 a.m.13 views

PT-2022-7693 · Google +7 · Go +7

Name of the Vulnerable Software and Affected Versions: Go versions prior to 1.16.14 Go versions 1.17.x prior to 1.17.7 Description: The issue is related to the Curve.IsOnCurve component in the Golang programming language, which is associated with incorrect checking of the return value of a method...

9.8CVSS7.2AI score0.10299EPSS
Exploits9References177
AlpineLinux
AlpineLinux
added 2022/02/11 12:0 a.m.97 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element...

9.1CVSS9.5AI score0.03015EPSS
Exploits0
Rows per page
Query Builder