CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-20825

Malware in sbrugna...

7.5CVSS7.6AI score0.00167EPSS

Exploits0References15

OSV•added 2024/03/06 11:7 a.m.•26 views

BIT-GOLANG-2020-28366 Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS8.1AI score0.00167EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 3:52 a.m.•1 views

SUSE CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS9.8AI score0.00167EPSS

Exploits0References8

OSV•added 2022/07/28 5:24 p.m.•35 views

GO-2022-0475 Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo

The go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get on a malicious package, or any other command that builds untrusted code. This can be caused by malicious unquoted symbol name in a linked object file...

7.5CVSS8AI score0.00167EPSS

Exploits0References4

OSV•added 2020/11/18 5:15 p.m.•3 views

AZL-38452 CVE-2020-28366 affecting package python-tensorboard for versions less than 2.16.2-1

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS7.8AI score0.00167EPSS

Exploits0References1

OSV•added 2020/11/18 5:15 p.m.•25 views

CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS7.8AI score

Exploits0References5

Prion•added 2020/11/18 5:15 p.m.•28 views

Code injection

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

5.1CVSS7.9AI score0.00167EPSS

Exploits0References5Affected Software2

UbuntuCve•added 2020/11/18 5:15 p.m.•26 views

CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS7.7AI score0.00167EPSS

Exploits0References2

OSV•added 2020/11/18 5:15 p.m.•0 views

UBUNTU-CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS7.8AI score0.00167EPSS

Exploits0References3

Cvelist•added 2020/11/18 12:0 a.m.•21 views

CVE-2020-28366 Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

8.1AI score0.00167EPSS

Exploits0References5

AlpineLinux•added 2020/11/18 12:0 a.m.•38 views

CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS8.3AI score0.00167EPSS

Exploits0

Debian CVE•added 2020/11/18 12:0 a.m.•28 views

CVE-2020-28366

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a malicious unquoted symbol name in a linked object file...

7.5CVSS8.2AI score0.00167EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by