Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-28327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input. CVE-2022-28327 Note that Nessus...

7.5CVSS7.1AI score0.04195EPSS
Exploits0References2
OSV
OSV
added 2025/02/14 12:12 p.m.5 views

OESA-2025-1122 etcd security update

%expand: Security Fixes: encoding/pem in Go before 1.17.9 and 1.18.x before 1.18.1 has a Decode stack overflow via a large amount of PEM data.CVE-2022-24675 regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression.CVE-2022-24921 The gener...

7.5CVSS7.2AI score0.05416EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:1 a.m.25 views

BIT-GOLANG-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS9.7AI score0.04195EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.5 views

SUSE CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

5.9CVSS7.6AI score0.04195EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2022/07/12 12:0 a.m.75 views

Oracle Linux 8 : go-toolset:ol8addon (ELSA-2022-17956)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-17956 advisory. go-toolset 1.18.3-1 - Update to golang 1.18.3 golang 1.18.3-1.0.1 - Rebase to 1.18.3 by adding upstream patches to the 1.18.0 openssl-fips - Modify...

7.8CVSS7.4AI score0.05416EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2022/06/17 12:0 a.m.41 views

EulerOS 2.0 SP5 : golang (EulerOS-SA-2022-1890)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to...

7.5CVSS7.4AI score0.05416EPSS
Exploits1References4
Snyk
Snyk
added 2022/05/20 9:17 p.m.2 views

Uncaught Exception

Overview std/crypto/elliptic is a Go standard library package std/crypto/elliptic Affected versions of this package are vulnerable to Uncaught Exception. Go Vulnerability Report: via the P256.ScalarMult or P256.ScalarBaseMult functions when provided with a crafted scalar input longer than 32 byte...

8.7CVSS9AI score0.04195EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2022/04/30 7:0 a.m.3 views

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input.

...

7.5CVSS7.3AI score0.04195EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/04/27 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : go1.17 (SUSE-SU-2022:1411-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1411-1 advisory. - encoding/pem in Go before 1.17.9 and 1.18.x before 1.18.1 has a Decode stack overflow via a large amount of...

7.5CVSS7.4AI score0.05416EPSS
Exploits1References8
CNVD
CNVD
added 2022/04/26 12:0 a.m.37 views

Google Go has an unspecified vulnerability (CNVD-2022-55213)

Google Go is a statically strongly typed, compiled, concurrent, and garbage collected programming language from Google Google, U.S.A. A vulnerability exists in versions of Google Go prior to 1.17.9 and prior to 1.18.1, which stems from the generic P-256 feature in crypto/elliptic allowing long...

5CVSS3.3AI score0.04195EPSS
Exploits0Affected Software1
NVD
NVD
added 2022/04/20 10:15 a.m.23 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS0.04195EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2022/04/20 10:15 a.m.6 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS5.9AI score0.04195EPSS
Exploits0References20
Prion
Prion
added 2022/04/20 10:15 a.m.27 views

Input validation

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

5CVSS8.5AI score0.04195EPSS
Exploits0References12Affected Software3
OSV
OSV
added 2022/04/20 10:15 a.m.2 views

UBUNTU-CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS6.9AI score0.04195EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/04/20 12:0 a.m.51 views

CVE-2022-28327

Removed by vendor...

7.5CVSS7.7AI score0.04195EPSS
Exploits0
Cvelist
Cvelist
added 2022/04/20 12:0 a.m.24 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

9.1AI score0.04195EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2022/04/20 12:0 a.m.33 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS6.9AI score0.04195EPSS
Exploits0References3
OSV
OSV
added 2022/04/20 12:0 a.m.31 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS6.9AI score0.04195EPSS
Exploits0References14
AlpineLinux
AlpineLinux
added 2022/04/20 12:0 a.m.40 views

CVE-2022-28327

The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input...

7.5CVSS10AI score0.04195EPSS
Exploits0
Rows per page
Query Builder