CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSV•added 2025/01/30 7:13 p.m.•4 views

BIT-GOLANG-2024-45340

Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless otherwise set, this only affected credentials stored in the users .netrc file...

8.8CVSS7.8AI score0.0009EPSS

Exploits0References4

OSV•added 2025/01/28 2:15 a.m.•1 views

DEBIAN-CVE-2024-45340

8.8CVSS7AI score0.0009EPSS

Exploits0References1

OSV•added 2025/01/28 2:15 a.m.•0 views

UBUNTU-CVE-2024-45340

8.8CVSS7.1AI score0.0009EPSS

Exploits0References5

CVE•added 2025/01/28 1:3 a.m.•103 views

CVE-2024-45340

CVE-2024-45340 is a Go-related vulnerability where credentials supplied via the new GOAUTH feature were not properly segmented by domain, enabling a malicious server to request credentials it should not access. By default, this affected credentials stored in the user’s .netrc file. The connected ...

8.8CVSS6.6AI score0.0009EPSS

Exploits0References4

OSV•added 2025/01/28 12:47 a.m.•30 views

GO-2025-3383 GOAUTH credential leak in cmd/go

8.8CVSS7.8AI score0.0009EPSS

Exploits0References3

SUSE CVE•added 2025/01/25 4:0 a.m.•1 views

SUSE CVE-2024-45340

7.7CVSS7AI score0.0009EPSS

Exploits0References7

Positive Technologies•added 2025/01/13 12:0 a.m.•3 views

PT-2025-2691 · Softwarex +1 · Softwarex +1

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue concerns the new GOAUTH feature, where credentials were not properly segmented by domain. This allowed a malicious server to request credentials it should not have access to. By...

10CVSS6.4AI score0.51816EPSS

Exploits6References172

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by