Lucene search
K

5 matches found

OSV
OSV
added 2026/04/25 9:30 p.m.6 views

GHSA-JJ45-XVQ5-RHH9 Kratos has a Confused Deputy issue

A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. The manipulation results in unintended intermediary. The attack may be launched remotely. The explo...

6.9CVSS5.5AI score0.00315EPSS
Exploits0References8
NVD
NVD
added 2026/04/25 7:16 p.m.5 views

CVE-2026-6993

A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. The manipulation results in unintended intermediary. The attack may be launched remotely. The explo...

6.9CVSS0.00315EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/25 6:30 p.m.6 views

EUVD-2026-25669

A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. The manipulation results in unintended intermediary. The attack may be launched remotely. The explo...

6.9CVSS5.4AI score0.00315EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/25 6:30 p.m.4 views

CVE-2026-6993

A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. The manipulation results in unintended intermediary. The attack may be launched remotely. The explo...

6.9CVSS5.3AI score0.00315EPSS
Exploits0References7Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/25 6:30 p.m.4 views

CVE-2026-6993 go-kratos http.DefaultServeMux Fallback server.go NewServer confused deputy

A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. The manipulation results in unintended intermediary. The attack may be launched remotely. The explo...

6.9CVSS5.5AI score0.00315EPSS
Exploits0References7
Rows per page
Query Builder