CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

199 matches found

EUVD-2022-55997

An inclusion of functionality from untrusted control sphere vulnerability in MinGW DLL component in Synology Hyper Backup Explorer before 3.0.1-0156 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.2AI score

Exploits0References1

Packet Storm News•added 2026/05/17 12:0 a.m.•8 views

One Step Further: Understanding PLC Binaries through Cross-Platform Reverse Engineering and Function-Level Semantic Analysis

As emerging attacks increasingly target Industrial Control Systems ICS, the security of Programmable Logic Controllers PLCs has become a critical concern. Binary Code Analysis BCA, which enables analysts to understand compiled programs without source code, is essential for ICS security tasks such...

5.8AI score

Exploits0

OSV•added 2026/05/11 5:44 a.m.•5 views

BIT-GOLANG-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy GOMODPROXY or checksum database GOSUMDB. A malicious module proxy can serve altered versions o...

7.5CVSS5.8AI score0.00008EPSS

Exploits0References5

SUSE CVE•added 2026/05/09 2:42 a.m.•7 views

SUSE CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

Tenable Nessus•added 2026/05/08 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-42501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affect...

7.5CVSS5.9AI score0.00008EPSS

Exploits0References3

EUVD•added 2026/05/07 9:30 p.m.•5 views

EUVD-2026-28433

5.8AI score0.00008EPSS

Exploits0References5

OSV•added 2026/05/07 8:16 p.m.•5 views

DEBIAN-CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References1

NVD•added 2026/05/07 8:16 p.m.•6 views

CVE-2026-42501

7.5CVSS0.00008EPSS

Exploits0References4

OSV•added 2026/05/07 8:16 p.m.•2 views

UBUNTU-CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References8

UbuntuCve•added 2026/05/07 8:16 p.m.•4 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0References7

Cvelist•added 2026/05/07 7:41 p.m.•30 views

CVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

0.00008EPSS

Exploits0References4

CVE•added 2026/05/07 7:41 p.m.•15 views

CVE-2026-42501

CVE-2026-42501 affects the Go toolchain download path via untrusted module proxies (GOMODPROXY) or checksum databases (GOSUMDB). The flaw allows a malicious module proxy to bypass checksum database validation when the Go toolchain is downloaded/selected (via GOTOOLCHAIN, go.work, or go.mod toolch...

7.5CVSS5.8AI score0.00008EPSS

Exploits0References4Affected Software1

ATTACKERKB•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501

5.8AI score0.00008EPSS

Exploits0References5Affected Software1

Debian CVE•added 2026/05/07 7:41 p.m.•5 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0

Vulnrichment•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go

5.8AI score0.00008EPSS

Exploits0References4

AlpineLinux•added 2026/05/07 7:41 p.m.•7 views

CVE-2026-42501

7.5CVSS5.8AI score0.00008EPSS

Exploits0

OSV•added 2026/05/07 7:21 p.m.•6 views

GO-2026-4984 Malicious module proxy can bypass checksum database in cmd/go

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

Snyk•added 2026/05/07 7:21 p.m.•5 views

Resources Downloaded over Insecure Protocol

Overview Affected versions of this package are vulnerable to Resources Downloaded over Insecure Protocol. Go Vulnerability Report: A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affects any...

7.5CVSS5.8AI score0.00008EPSS

Exploits0References3

Positive Technologies•added 2026/05/07 12:0 a.m.•4 views

PT-2026-38570

Name of the Vulnerable Software and Affected Versions Go affected versions not specified Description A flaw in the go command's validation of module checksums allows a malicious module proxy to bypass checksum database validation. This occurs when the checksum database returns a successful respon...

7.5CVSS5.9AI score0.00008EPSS

Exploits0References25

Tenable Nessus•added 2026/04/30 12:0 a.m.•8 views

Amazon Linux 2023 : golang, golang-bin, golang-misc (ALAS2023-2026-1593)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1593 advisory. SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time in the Go toolchain cmd/go due to trust layer bypass...

9.8CVSS6.4AI score0.00022EPSS

Exploits0References20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by