Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-32975

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00084EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-32976

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00329EPSS
Exploits0References7
SUSE Linux
SUSE Linuxadded 2025/09/11 3:5 a.m.3 views

Security update for go1.23-openssl

This update for go1.23-openssl fixes the following issues: Update to version 1.23.12 cut from the go1.23-fips-release branch at the revision tagged go1.23.12-1-openssl-fips. jscSLE-18320 Rebase to 1.23.12 Fix HKDF-Extract The latest OpenSSL in c9s/c10s requires nil salt to be passed as a hash...

9.3CVSS7AI score0.00294EPSS
Exploits3References46
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-29405

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The go command may execute arbitrary code at build time when using cgo. This may occur when running go get on a malicious module, or when running any other...

9.8CVSS7.3AI score0.00329EPSS
Exploits0References3
OSV
OSVadded 2024/03/06 10:55 a.m.29 views

BIT-GOLANG-2023-29404 Improper handling of non-optional LDFLAGS in go command with cgo in cmd/go

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. The arguments for a...

9.8CVSS9.1AI score0.00084EPSS
Exploits0References9
OSV
OSVadded 2024/03/06 10:55 a.m.25 views

BIT-GOLANG-2023-29405 Improper sanitization of LDFLAGS with embedded spaces in go command with cgo in cmd/go

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS9AI score0.00329EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2024/01/16 12:0 a.m.34 views

EulerOS 2.0 SP11 : golang (EulerOS-SA-2023-2842)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which...

9.8CVSS7.5AI score0.00329EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2023/07/21 12:0 a.m.30 views

Fedora 38 : golang (2023-eb60fcd505)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-eb60fcd505 advisory. This update includes a security fix to the net/http package, as well as bug fixes to the compiler, cgo, the cover tool, the go command, the runtime,...

9.8CVSS7.1AI score0.00329EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2023/07/07 12:0 a.m.40 views

Oracle Linux 9 : go-toolset / and / golang (ELSA-2023-3923)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3923 advisory. - New Go version 1.19.10 CVE-2023-29402 CVE-2023-29403 CVE-2023-29404 CVE-2023-29405 go-toolset Tenable has extracted the preceding description block...

9.8CVSS7.1AI score0.00329EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2023/06/30 12:0 a.m.36 views

AlmaLinux 9 : go-toolset and golang (ALSA-2023:3923)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:3923 advisory. - The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cg...

9.8CVSS7.5AI score0.00329EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2023/06/29 9:14 a.m.3 views

golang: cmd/cgo: Arbitrary code execution triggered by linker flags

A flaw was found in golang. The go command may execute arbitrary code at build time when using cgo. This can occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This can be triggered by linker flags, specified via a "cgo LDFLAGS"...

9.8CVSS7.4AI score0.00329EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2023/06/29 5:33 a.m.5 views

golang: cmd/cgo: Arbitrary code execution triggered by linker flags

A flaw was found in golang. The go command may execute arbitrary code at build time when using cgo. This can occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This can be triggered by linker flags, specified via a "cgo LDFLAGS"...

9.8CVSS7.4AI score0.00329EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2023/06/29 12:0 a.m.20 views

CentOS 8 : go-toolset:rhel8 (CESA-2023:3922)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2023:3922 advisory. - The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses...

9.8CVSS7.6AI score0.00329EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2023/06/26 6:17 p.m.68 views

CVE-2023-29405

A flaw was found in golang. The go command may execute arbitrary code at build time when using cgo. This can occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This can be triggered by linker flags, specified via a "cgo LDFLAGS"...

7.5CVSS9.3AI score0.00329EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2023/06/17 12:0 a.m.26 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.19 (SUSE-SU-2023:2525-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2525-1 advisory. - The go command may generate unexpected code at build time when using cgo. This may result in...

9.8CVSS7.6AI score0.00329EPSS
Exploits0References14
OSV
OSVadded 2023/06/08 9:15 p.m.3 views

AZL-37337 CVE-2023-29404 affecting package golang for versions less than 1.21.6-1

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. The arguments for a...

9.8CVSS7.3AI score0.00084EPSS
Exploits0References1
OSV
OSVadded 2023/06/08 9:15 p.m.1 views

DEBIAN-CVE-2023-29405

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS7.9AI score0.00329EPSS
Exploits0References1
NVD
NVDadded 2023/06/08 9:15 p.m.20 views

CVE-2023-29405

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS9.7AI score0.00329EPSS
Exploits0References8
OSV
OSVadded 2023/06/08 9:15 p.m.19 views

CVE-2023-29405

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS8AI score
Exploits0References8
OSV
OSVadded 2023/06/08 9:15 p.m.2 views

AZL-27110 CVE-2023-29405 affecting package golang for versions less than 1.20.7-1

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS7AI score0.00329EPSS
Exploits0References1
Rows per page
Query Builder