CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в golang-1.19

The go command may generate unexpected code during build time when using cgo. This can lead to unexpected behavior when running a Go program that uses cgo. This issue may occur when running a trusted module that contains directories with newline characters in their names. Modules retrieved using...

9.8CVSS7AI score0.00125EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-0471

Malware in sbrugna...

8.8CVSS8.6AI score0.00943EPSS

Exploits1References16

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414446)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414446 advisory. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root...

6.9CVSS7.1AI score0.00005EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-32973

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00125EPSS

Exploits0References7

OSV•added 2024/03/06 10:55 a.m.•25 views

BIT-GOLANG-2023-29402 Code injection via go command with cgo in cmd/go

The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules which are retrieved...

9.8CVSS8.5AI score0.00125EPSS

Exploits0References9

RedHat Linux•added 2023/10/10 4:31 p.m.•1 views

kernel: LoadPin bypass via dm-verity table reload

A flaw was found in the Linux kernel. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module and firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out...

6.9CVSS6.8AI score0.00005EPSS

Exploits1References5

Amazon•added 2023/07/19 12:0 a.m.•29 views

Important: golang

Issue Overview: The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules whi...

9.8CVSS7.4AI score0.00125EPSS

Exploits0

OSV•added 2023/07/01 11:5 a.m.•0 views

OESA-2023-1386 golang security update

The Go Programming Language. Security Fixes: The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline character...

9.8CVSS7.9AI score0.00329EPSS

Exploits0References4

RedHat Linux•added 2023/06/29 9:49 a.m.•3 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

A flaw was found in golang. The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program that uses cgo. This can occur when running an untrusted module that contains directories with newline characters in their names...

9.8CVSS7.1AI score0.00125EPSS

Exploits0References8

RedHat Linux•added 2023/06/29 9:14 a.m.•4 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

9.8CVSS7.1AI score0.00125EPSS

Exploits0References8

RedHat Linux•added 2023/06/29 5:33 a.m.•2 views

golang: cmd/go: go command may generate unexpected code at build time when using cgo

9.8CVSS7.1AI score0.00125EPSS

Exploits0References8

OSV•added 2023/06/08 9:15 p.m.•2 views

DEBIAN-CVE-2023-29404

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. The arguments for a...

9.8CVSS7.6AI score0.00084EPSS

Exploits0References1

OSV•added 2023/06/08 9:15 p.m.•1 views

DEBIAN-CVE-2023-29402

9.8CVSS7.5AI score0.00125EPSS

Exploits0References1

OSV•added 2023/06/08 9:15 p.m.•3 views

AZL-27122 CVE-2023-29402 affecting package msft-golang for versions less than 1.19.10-1

9.8CVSS6.7AI score0.00125EPSS

Exploits0References1

OSV•added 2023/06/08 9:15 p.m.•2 views

AZL-37329 CVE-2023-29402 affecting package golang for versions less than 1.21.6-1

9.8CVSS6.7AI score0.00125EPSS

Exploits0References1

OSV•added 2023/06/08 9:15 p.m.•2 views

UBUNTU-CVE-2023-29402

9.8CVSS6.7AI score0.00125EPSS

Exploits0References8

Vulnrichment•added 2023/06/08 8:19 p.m.•6 views

CVE-2023-29402 Code injection via go command with cgo in cmd/go

7.1AI score0.00125EPSS

Exploits0References7

SUSE CVE•added 2023/06/07 2:23 a.m.•1 views

SUSE CVE-2023-29402

9.8CVSS6.6AI score0.00125EPSS

Exploits0References7

Positive Technologies•added 2023/04/05 12:0 a.m.•4 views

PT-2023-3109 · Go +11 · Go +11

Name of the Vulnerable Software and Affected Versions: Go affected versions not specified Description: The issue is related to incorrect code generation when handling directory names with newline characters in the Go programming language's Cgo module. This may result in unexpected behavior when...

9.8CVSS7AI score0.944EPSS

Exploits20References249

RedHat Linux•added 2022/11/15 11:55 a.m.•1 views

kernel: LoadPin bypass via dm-verity table reload

6.9CVSS6.8AI score0.00005EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by