Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

EulerOS 2.0 SP13 : golang (EulerOS-SA-2025-2521)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a...

9.1CVSS7AI score0.00724EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/10/22 12:0 a.m.4 views

TencentOS Server 3: go-toolset:rhel8 (TSSA-2025:0791)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0791 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.6CVSS7.5AI score0.00273EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-23047

Malicious code in bioql PyPI...

8.6CVSS6.9AI score0.00273EPSS
Exploits0References4
OSV
OSV
added 2025/07/31 5:44 a.m.2 views

BIT-GOLANG-2025-4674 Unexpected command execution in untrusted VCS repositories in cmd/go

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...

8.6CVSS6.6AI score0.00273EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/07/31 12:0 a.m.6 views

Amazon Linux 2 : golang (ALAS-2025-2939)

The version of golang installed on the remote host is prior to 1.23.11-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2939 advisory. cmd/go: unexpected command execution in untrusted VCS repositories CVE-2025-4674 Tenable has extracted the preceding description...

8.6CVSS7.5AI score0.00273EPSS
Exploits0References4
NVD
NVD
added 2025/07/29 10:15 p.m.6 views

CVE-2025-4674

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...

8.6CVSS0.00273EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/29 9:19 p.m.9 views

CVE-2025-4674 Unexpected command execution in untrusted VCS repositories in cmd/go

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...

0.00273EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/07/29 9:19 p.m.3 views

CVE-2025-4674

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...

8.6CVSS6.6AI score0.00273EPSS
Exploits0
OSV
OSV
added 2025/07/29 9:2 p.m.3 views

GO-2025-3828 Unexpected command execution in untrusted VCS repositories in cmd/go

The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...

8.6CVSS6.6AI score0.00273EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.7 views

PT-2025-28646

Name of the Vulnerable Software and Affected Versions: Go versions prior to 1.24.5 Go versions prior to 1.23.11 Description: The issue concerns unexpected command execution in untrusted VCS repositories when using the Go toolchain. This can occur when the toolchain is used in directories fetched...

9.8CVSS7.8AI score0.00536EPSS
Exploits0References341
Rows per page
Query Builder