CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

OSV•added 2026/05/17 8:17 p.m.•5 views

SUSE-SU-2026:21804-1 Security update for go1.26

This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...

7.5CVSS6AI score0.00054EPSS

Exploits0References25

Tenable Nessus•added 2026/05/16 12:0 a.m.•13 views

SUSE SLED15 / SLES15 Security Update : go1.25 (SUSE-SU-2026:1862-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1862-1 advisory. This update for go1.25 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling...

7.5CVSS5.9AI score0.00054EPSS

Exploits0References36

SUSE Linux•added 2026/05/14 10:33 p.m.•6 views

Security update for go1.26

This update for go1.26 fixes the following issues Security issues: CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. CVE-2026-39817: cmd/go: "go tool pack" does not...

7.5CVSS5.9AI score0.00054EPSS

Exploits0References48

OSV•added 2026/05/11 5:44 a.m.•4 views

BIT-GOLANG-2026-39819 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go

The "go bug" command writes to two files with predictable names in the system temporary directory for example, "/tmp". An attacker with access to the temporary directory can create a symlink in one of these names, causing "go bug" to overwrite the target of the symlink...

5.3CVSS5.8AI score0.00009EPSS

Exploits0References5

SUSE CVE•added 2026/05/09 2:43 a.m.•6 views

SUSE CVE-2026-39819

5.3CVSS5.8AI score0.00009EPSS

Exploits0References3

Tenable Nessus•added 2026/05/08 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-39819

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The go bug command writes to two files with predictable names in the system temporary directory for example, /tmp. An attacker with access to the temporary...

5.3CVSS5.9AI score0.00009EPSS

Exploits0References3

EUVD•added 2026/05/07 9:30 p.m.•4 views

EUVD-2026-28422

5.8AI score0.00009EPSS

Exploits0References5

NVD•added 2026/05/07 8:16 p.m.•7 views

CVE-2026-39819

5.3CVSS0.00009EPSS

Exploits0References4

OSV•added 2026/05/07 8:16 p.m.•1 views

DEBIAN-CVE-2026-39819

5.3CVSS5.8AI score0.00009EPSS

Exploits0References1

UbuntuCve•added 2026/05/07 8:16 p.m.•2 views

CVE-2026-39819

5.3CVSS5.8AI score0.00009EPSS

Exploits0References7

OSV•added 2026/05/07 8:16 p.m.•2 views

UBUNTU-CVE-2026-39819

5.3CVSS5.8AI score0.00009EPSS

Exploits0References8

ATTACKERKB•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-39819

5.8AI score0.00009EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/07 7:41 p.m.•23 views

CVE-2026-39819 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go

0.00009EPSS

Exploits0References4

Vulnrichment•added 2026/05/07 7:41 p.m.•4 views

CVE-2026-39819 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go

5.8AI score0.00009EPSS

Exploits0References4

CVE•added 2026/05/07 7:41 p.m.•6 views

CVE-2026-39819

CVE-2026-39819 concerns the Go tool (go bug). The vulnerability arises when the command writes to two files with predictable names in the system temporary directory (e.g., /tmp). An attacker with access to the temporary directory can create a symlink in one of these names, causing the go bug proc...

5.3CVSS5.8AI score0.00009EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/07 7:41 p.m.•4 views

CVE-2026-39819

5.3CVSS5.8AI score0.00009EPSS

Exploits0

Snyk•added 2026/05/07 7:21 p.m.•3 views

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack. Go Vulnerability Report: The "go bug" command writes to two files with predictable names in the system temporary directory for example, "/tmp". An attacker with access to the temporary directory can create a symlink in o...

6.8CVSS5.8AI score0.00009EPSS

Exploits0References3

OSV•added 2026/05/07 7:21 p.m.•4 views

GO-2026-4978 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go

5.3CVSS5.8AI score0.00009EPSS

Exploits0References3

Positive Technologies•added 2026/05/07 12:0 a.m.•4 views

PT-2026-38563

Name of the Vulnerable Software and Affected Versions Go affected versions not specified Description The "go bug" command writes to two files with predictable names in the system temporary directory, such as "/tmp". An attacker with access to this directory can create a symbolic link symlink—a fi...

5.3CVSS5.8AI score0.00009EPSS

Exploits0References23

Positive Technologies•added 2026/04/02 12:0 a.m.•0 views

PT-2026-29943

Sliver: Nil Pointer Dereference in tunnelCloseHandler causes panic when a reverse tunnel rportfwd close is attempted in github.com/bishopfox/sliver...

5.9AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by