Lucene search
K

13 matches found

OSV
OSV
added 2026/02/19 11:16 p.m.3 views

UBUNTU-CVE-2026-24122

Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...

3.7CVSS5.7AI score0.00197EPSS
Exploits2References5
F5 Networks
F5 Networks
added 2025/07/21 8:43 p.m.9 views

K000152658: Golang vulnerability CVE-2024-45341

Security Advisory Description A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make...

6.1CVSS7.3AI score0.00458EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.1 views

EulerOS 2.0 SP12 : golang (EulerOS-SA-2025-1820)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate...

6.1CVSS6.5AI score0.00647EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/05/13 3:59 p.m.4 views

golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints

A flaw was found in the crypto/x509 package of the Golang standard library. A certificate with a URI, which has a IPv6 address with a zone ID, may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI; this...

6.1CVSS6.8AI score0.00458EPSS
Exploits0References7
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/02 5:23 p.m.9 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a security bypass in Golang crypto [CVE-2024-45341]

Summary IBM Watson Speech Services Cartridge is vulnerable to a security bypass in the crypto/x509 package of the Golang standard library, caused by a faulty certificate URI CVE-2024-45341. Golang is used by our Speech utilities. This vulnerabilitiy has been addressed. Please read the details for...

6.1CVSS6.9AI score0.00458EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/27 12:0 a.m.21 views

Amazon Linux 2 : golang (ALAS-2025-2795)

The version of golang installed on the remote host is prior to 1.23.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2795 advisory. net/http: sensitive headers incorrectly sent after cross-domain redirect The HTTP client drops sensitive headers after...

6.1CVSS6.8AI score0.00647EPSS
Exploits2References8
Amazon
Amazon
added 2025/03/25 12:0 a.m.11 views

Medium: golang

Issue Overview: net/http: sensitive headers incorrectly sent after cross-domain redirect The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to...

6.1CVSS6.6AI score0.00647EPSS
Exploits2
OSV
OSV
added 2025/01/28 2:15 a.m.6 views

AZL-56031 CVE-2024-45341 affecting package msft-golang for versions less than 1.23.3-2

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.1CVSS7.2AI score0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/28 1:3 a.m.16 views

CVE-2024-45341 Usage of IPv6 zone IDs can bypass URI name constraints in crypto/x509

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

0.00458EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/01/28 1:3 a.m.9 views

CVE-2024-45341 Usage of IPv6 zone IDs can bypass URI name constraints in crypto/x509

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.3AI score0.00458EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2025/01/28 1:3 a.m.10 views

CVE-2024-45341

A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs...

6.1CVSS4.3AI score0.00458EPSS
Exploits0
Prion
Prion
added 2023/08/02 8:15 p.m.35 views

Code injection

Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three...

5CVSS6.3AI score0.01328EPSS
Exploits0References6Affected Software1
AlpineLinux
AlpineLinux
added 2023/08/02 7:47 p.m.52 views

CVE-2023-29409

Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to = 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three...

5.3CVSS7.1AI score0.01328EPSS
Exploits0
Rows per page
Query Builder