Lucene search
K

26 matches found

Veracode
Veracode
added 2018/01/17 8:19 a.m.8 views

POODLE Attack

crypto/tls in github.com/golang/go is vulnerable to the POODLE attack. The vulnerability exists due to the default SSLv3 fallback configuration in crypto/tls...

6.6AI score
Exploits0
Veracode
Veracode
added 2017/10/06 3:10 a.m.31 views

Man-in-the-Middle (MitM)

github.com/golang/go is vulnerable to man-in-the-middle MitM attack. A malicious user can set up a MitM SMTP server that doesn't advertise STARTTLS and advertises that PLAIN authentication can be used. By doing this, smtp.PlainAuth will send the username and password will be sent to the server...

5.9CVSS7.5AI score0.01105EPSS
Exploits0References8Affected Software4
Veracode
Veracode
added 2017/10/05 11:9 p.m.19 views

Untrusted Certificate Validation

crypto/x509 in github.com/golang/go uses untrusted certificates for validation. When used on Darwin, golang will use an untrusted root certificate as if it were trusted when verifying connections...

7.5CVSS7.4AI score0.01287EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2017/06/22 6:48 a.m.7 views

Missing Certificate Request Signature Validation

crypto/x509 in github.com/golang/go is missing certificate request signature validation. The library does not check the binding of the private key i.e., signature validation to its corresponding entities' certificate...

6.7AI score
Exploits0
Veracode
Veracode
added 2017/05/02 8:52 a.m.10 views

Cross-site Scripting (XSS)

net/http in github.com/golang/go is vulnerable to cross-site scripting XSS attacks. These attacks are possible through the Error function as a user can control the error message...

5.7AI score
Exploits0
Veracode
Veracode
added 2017/04/27 7:4 a.m.30 views

HTTP Header Injection

net/textproto in github.com/golang/go is vulnerable to HTTP header injection attacks. These attacks are possible because it treats spaces as hyphens. This leaves net/textproto vulnerable to request smuggling...

9.8CVSS9.3AI score0.09625EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder