Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2019-9741

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to...

6.1CVSS6.6AI score0.02346EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.16 views

CVE-2019-9741 affecting package python-tensorboard for versions less than 2.16.2-1

CVE-2019-9741 affecting package python-tensorboard for versions less than 2.16.2-1. An upgraded version of the package is available that resolves this issue...

6.1CVSS6.9AI score0.02346EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/03/14 12:0 a.m.46 views

Debian: Security Advisory (DLA-2591-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.66252EPSS
Exploits2References4
Debian
Debian
added 2021/03/13 6:37 p.m.75 views

[SECURITY] [DLA 2592-1] golang-1.8 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2592-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler March 13, 2021 https://wiki.debian.org/LTS -...

9.8CVSS9.3AI score0.66252EPSS
Exploits2
Debian
Debian
added 2021/03/13 6:37 p.m.129 views

[SECURITY] [DLA 2591-1] golang-1.7 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2591-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler March 13, 2021 https://wiki.debian.org/LTS -...

9.8CVSS9.3AI score0.66252EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.33 views

CentOS 8 : go-toolset:rhel8 (CESA-2019:1519)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:1519 advisory. - golang: CRLF injection in net/http CVE-2019-9741 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...

6.1CVSS6.7AI score0.02346EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/10/10 5:51 p.m.20 views

CVE-2019-9741

An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command...

6.1CVSS1.7AI score0.02346EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/08/26 12:0 a.m.26 views

Photon OS 2.0: Go PHSA-2019-2.0-0168

An update of the go package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0168. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid128175;...

6.1CVSS6.8AI score0.02346EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2019/07/30 12:0 a.m.39 views

go-toolset:rhel8 security update

go-toolset 1.11.5-2 - Include patch to fix CVE-2019-9741 - Resolves: rhbz1690443 golang 1.11.5-2 - Include patch to fix CVE-2019-9741 - Resolves: rhbz1690443 1.11.5-2 - Switch to pagure fork for Go FIPS...

6.1CVSS1.2AI score0.02346EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2019/07/09 2:25 p.m.28 views

Security Bulletin: IBM Event Streams is affected by Go vulnerabilities

Summary IBM Event Streams has addressed the following vulnerabilities in the Go Runtimes shipped. Vulnerability Details CVEID: CVE-2019-9741 DESCRIPTION: Golang GO is vulnerable to HTTP header injection, caused by improper validation of input in the http.NewRequest. By sending a specially-crafted...

6.1CVSS0.6AI score0.02346EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2019/06/18 5:21 p.m.138 views

Moderate: Red Hat Security Advisory: go-toolset:rhel8 security update

An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.1CVSS6.7AI score0.02346EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/06/05 12:0 a.m.39 views

RHEL 7 : go-toolset-1.11-golang (RHSA-2019:1300)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1300 advisory. The golang packages provide the Go programming language compiler. Security Fixes: golang: CRLF injection in net/http CVE-2019-9741 For more details...

6.1CVSS6.8AI score0.02346EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2019/04/29 10:25 p.m.30 views

Security Bulletin: API Connect V2018 is impacted by a vulnerability in Golang (CVE-2019-9741)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-9741 DESCRIPTION: Golang GO is vulnerable to HTTP header injection, caused by improper validation of input in the http.NewRequest. By sending a specially-crafted request, a remote attacker cou...

6.1CVSS1.4AI score0.02346EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/11 12:0 a.m.30 views

Fedora 29 : golang (2019-d05bc7e3df)

Rebase to go1.11.6 - Security fix for CVE-2019-9741 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

6.1CVSS6.6AI score0.02346EPSS
Exploits1References2
OSV
OSV
added 2019/03/13 8:29 a.m.5 views

AZL-38599 CVE-2019-9741 affecting package python-tensorboard for versions less than 2.16.2-1

An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command...

6.1CVSS6.7AI score0.02346EPSS
Exploits1References1
CVE
CVE
added 2019/03/13 6:0 a.m.190 views

CVE-2019-9741

CVE-2019-9741 affects Go’s net/http in Go 1.11.5, enabling CRLF injection when an attacker controls a URL parameter. The issue arises from constructing an HTTP request with http.NewRequest where a CRLF sequence can precede a header or Redis command, allowing potential header injection and related...

6.1CVSS6.3AI score0.02346EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder