492 matches found
EUVD-2021-16949
Malware in sbrugna...
EUVD-2015-4338
Malware in sbrugna...
EUVD-2015-4351
Malware in sbrugna...
RLSA-2025:13935 Important: golang security update
The golang packages provide the Go programming language compiler. Security Fixes: cmd/go: Go VCS Command Execution Vulnerability CVE-2025-4674 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages...
golang security update
An update is available for golang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...
RockyLinux 9 : golang (RLSA-2025:13935)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:13935 advisory. cmd/go: Go VCS Command Execution Vulnerability CVE-2025-4674 Tenable has extracted the preceding description block directly from the RockyLinux security advisory...
EUVD-2024-3221
Malicious code in bioql PyPI...
EUVD-2022-26057
Malicious code in bioql PyPI...
EUVD-2022-26103
Malicious code in bioql PyPI...
EUVD-2025-22921
Malicious code in bioql PyPI...
EUVD-2025-15880
Malicious code in bioql PyPI...
EUVD-2023-0200
Malicious code in bioql PyPI...
EUVD-2023-1011
Malicious code in bioql PyPI...
EUVD-2025-23047
Malicious code in bioql PyPI...
EUVD-2023-43052
Malicious code in bioql PyPI...
EUVD-2022-55217
Malicious code in bioql PyPI...
RockyLinux 8 : go-toolset:rhel8 (RLSA-2025:13940)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:13940 advisory. cmd/go: Go VCS Command Execution Vulnerability CVE-2025-4674 Tenable has extracted the preceding description block directly from the RockyLinux security advisory...
Amazon Linux 2023 : golang, golang-bin, golang-misc (ALAS2023-2025-1104)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1104 advisory. cmd/go: unexpected command execution in untrusted VCS repositories CVE-2025-4674 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Ness...
BIT-GOLANG-2025-4674 Unexpected command execution in untrusted VCS repositories in cmd/go
The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...
Amazon Linux 2 : golang (ALAS-2025-2939)
The version of golang installed on the remote host is prior to 1.23.11-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2939 advisory. cmd/go: unexpected command execution in untrusted VCS repositories CVE-2025-4674 Tenable has extracted the preceding description...