Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в golang-1.15

In Go versions before 1.15.13 and 1.16.x, as well as before 1.16.5, certain configurations of ReverseProxy from net/http/httputil lead to a situation where an attacker can drop arbitrary headers...

5.3CVSS6.6AI score0.00039EPSS
Exploits1References2
OSV
OSVadded 2024/08/21 4:3 p.m.7 views

GO-2022-0923 Header dropping in traefik in github.com/traefik/traefik

Header dropping in traefik in github.com/traefik/traefik...

8.1CVSS8AI score0.00379EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/04/12 3:9 p.m.2 views

golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty

A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity...

5.3CVSS7.2AI score0.00039EPSS
Exploits1References5
RedHat Linux
RedHat Linuxadded 2021/12/13 3:29 p.m.1 views

golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty

A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity...

5.3CVSS7.2AI score0.00039EPSS
Exploits1References5
Amazon
Amazonadded 2021/09/08 12:0 a.m.64 views

Medium: golang

Issue Overview: A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity. CVE-2021-33197 A fl...

7.5CVSS6.7AI score0.00917EPSS
Exploits3
RedHat Linux
RedHat Linuxadded 2021/08/31 3:1 p.m.0 views

golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty

A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity...

5.3CVSS7.2AI score0.00039EPSS
Exploits1References5
CVE
CVEadded 2021/08/02 6:54 p.m.434 views

CVE-2021-33197

The CVE-2021-33197 entry concerns the Go standard library’s ReverseProxy (net/http/httputil). Affected Go versions: before 1.15.13 and 1.16.x before 1.16.5. The underlying issue is described as: certain ReverseProxy configurations can cause an attacker to drop arbitrary headers. Impact, per the p...

5.3CVSS6.4AI score0.00039EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2021/06/28 12:0 a.m.3 views

Google Golang 安全漏洞

Google Golang is a statically strongly typed, compiled language from Google, Inc. A security vulnerability exists in Google Golang, which can be exploited by attackers to cause arbitrary headers to be dropped...

5.3CVSS5.9AI score0.00039EPSS
Exploits1References63
Rows per page
Query Builder