Lucene search

K

122 matches found

CVE
CVE
added 2023/10/10 2:15 p.m.4413 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94434EPSS
CVE
CVE
added 2023/10/11 10:15 p.m.3082 views

CVE-2023-39325

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a new ...

7.5CVSS7.3AI score0.00163EPSS
CVE
CVE
added 2020/01/14 11:15 p.m.1294 views

CVE-2020-0601

A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, l...

8.1CVSS7.6AI score0.94044EPSS
CVE
CVE
added 2023/12/06 5:15 p.m.920 views

CVE-2023-45285

Using go get to fetch a module with the ".git" suffix may unexpectedly fallback to the insecure "git://" protocol if the module is unavailable via the secure "https://" and "git+ssh://" protocols, even if GOINSECURE is not set for said module. This only affects users who are not using the module pr...

7.5CVSS7.8AI score0.00055EPSS
CVE
CVE
added 2023/04/06 4:15 p.m.775 views

CVE-2023-24538

Templates do not properly consider backticks (`) as Javascript string delimiters, and do not escape them as expected. Backticks are used, since ES6, for JS template literals. If a template contains a Go template action within a Javascript template literal, the contents of the action can be used to ...

9.8CVSS9.7AI score0.00664EPSS
CVE
CVE
added 2023/04/06 4:15 p.m.616 views

CVE-2023-24534

HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs, potentially leading to a denial of service. Certain unusual patterns of input data can cause the common function used to parse HTTP and MIME headers to allocate substantially more memory than required...

7.5CVSS8.6AI score0.0004EPSS
CVE
CVE
added 2021/05/27 1:15 p.m.611 views

CVE-2021-31525

net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.

5.9CVSS5.9AI score0.0001EPSS
CVE
CVE
added 2023/02/28 6:15 p.m.605 views

CVE-2022-41723

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.

7.5CVSS7.7AI score0.00235EPSS
CVE
CVE
added 2023/04/06 4:15 p.m.591 views

CVE-2023-24537

Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.

7.5CVSS8.7AI score0.00021EPSS
CVE
CVE
added 2023/04/06 4:15 p.m.590 views

CVE-2023-24536

Multipart form parsing can consume large amounts of CPU and memory when processing form inputs containing very large numbers of parts. This stems from several causes: 1. mime/multipart.Reader.ReadForm limits the total memory a parsed multipart form can consume. ReadForm can undercount the amount of...

7.5CVSS8.8AI score0.00059EPSS
CVE
CVE
added 2023/05/11 4:15 p.m.572 views

CVE-2023-24540

Not all valid JavaScript whitespace characters are considered to be whitespace. Templates containing whitespace characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.

9.8CVSS9.2AI score0.0025EPSS
CVE
CVE
added 2021/07/15 2:15 p.m.552 views

CVE-2021-34558

The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.

6.5CVSS7AI score0.00839EPSS
CVE
CVE
added 2022/09/06 6:15 p.m.549 views

CVE-2022-27664

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.

7.5CVSS7.7AI score0.00115EPSS
CVE
CVE
added 2022/12/08 8:15 p.m.544 views

CVE-2022-41717

An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate a...

5.3CVSS6.8AI score0.00413EPSS
CVE
CVE
added 2023/02/28 6:15 p.m.522 views

CVE-2022-41724

Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session res...

7.5CVSS8.8AI score0.00016EPSS
CVE
CVE
added 2023/03/08 8:15 p.m.512 views

CVE-2023-24532

The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.

5.3CVSS6.6AI score0.00024EPSS
CVE
CVE
added 2022/06/23 5:15 p.m.504 views

CVE-2022-29526

Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible.

5.3CVSS8.3AI score0.00173EPSS
CVE
CVE
added 2023/02/28 6:15 p.m.500 views

CVE-2022-41725

A denial of service is possible from excessive resource consumption in net/http and mime/multipart. Multipart form parsing with mime/multipart.Reader.ReadForm can consume largely unlimited amounts of memory and disk files. This also affects form parsing in the net/http package with the Request meth...

7.5CVSS8.6AI score0.00046EPSS
CVE
CVE
added 2023/07/11 8:15 p.m.496 views

CVE-2023-29406

The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value.

6.5CVSS7.2AI score0.00131EPSS
CVE
CVE
added 2023/08/02 8:15 p.m.495 views

CVE-2023-29409

Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to

5.3CVSS6.9AI score0.00082EPSS
CVE
CVE
added 2022/10/14 3:16 p.m.481 views

CVE-2022-41715

Programs which compile regular expressions from untrusted sources may be vulnerable to memory exhaustion or denial of service. The parsed regexp representation is linear in the size of the input, but in some cases the constant factor can be as high as 40,000, making relatively small regexps consume...

7.5CVSS7.2AI score0.00015EPSS
CVE
CVE
added 2023/05/11 4:15 p.m.475 views

CVE-2023-29400

Templates containing actions in unquoted HTML attributes (e.g. "attr={{.}}") executed with empty input can result in output with unexpected results when parsed due to HTML normalization rules. This may allow injection of arbitrary attributes into tags.

7.3CVSS8.5AI score0.00049EPSS
CVE
CVE
added 2021/05/26 3:15 p.m.467 views

CVE-2021-33194

golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input.

7.5CVSS7.1AI score0.00036EPSS
CVE
CVE
added 2023/05/11 4:15 p.m.467 views

CVE-2023-24539

Angle brackets () are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if executed with untrusted input.

7.3CVSS8.6AI score0.00067EPSS
CVE
CVE
added 2021/01/26 6:16 p.m.449 views

CVE-2021-3114

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field.

6.5CVSS7AI score0.00043EPSS
CVE
CVE
added 2023/06/08 9:15 p.m.447 views

CVE-2023-29404

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "#cgo LDFLAGS" directive. The arguments for a ...

9.8CVSS9.2AI score0.00085EPSS
CVE
CVE
added 2023/06/08 9:15 p.m.439 views

CVE-2023-29402

The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules which are retrieved u...

9.8CVSS9.4AI score0.00124EPSS
CVE
CVE
added 2023/06/08 9:15 p.m.438 views

CVE-2023-29405

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "#cgo LDFLAGS" directive. Flags containing emb...

9.8CVSS9.6AI score0.00335EPSS
CVE
CVE
added 2022/10/14 3:15 p.m.435 views

CVE-2022-2880

Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy sanitizes the query ...

7.5CVSS7.7AI score0.00029EPSS
CVE
CVE
added 2021/08/08 6:15 a.m.430 views

CVE-2021-36221

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.

5.9CVSS6.6AI score0.00212EPSS
CVE
CVE
added 2023/02/28 6:15 p.m.428 views

CVE-2022-41722

A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as "a/../c:/b" into the valid path "c:\b". This transformation of a relative (if invalid) path into an absolute path could enable a directory traversal at...

7.5CVSS7.4AI score0.00083EPSS
CVE
CVE
added 2020/11/18 5:15 p.m.424 views

CVE-2020-28362

Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.

7.5CVSS7.5AI score0.0015EPSS
CVE
CVE
added 2022/02/11 1:15 a.m.419 views

CVE-2022-23773

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

7.5CVSS8.1AI score0.00062EPSS
CVE
CVE
added 2023/10/05 9:15 p.m.414 views

CVE-2023-39323

Line directives ("//line") can be used to bypass the restrictions on "//go:cgo_" directives, allowing blocked linker and compiler flags to be passed during compilation. This can result in unexpected execution of arbitrary code when running "go build". The line directive requires the absolute path o...

8.1CVSS8.3AI score0.0006EPSS
CVE
CVE
added 2022/02/11 1:15 a.m.406 views

CVE-2022-23806

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.

9.1CVSS9.1AI score0.00022EPSS
CVE
CVE
added 2021/08/02 7:15 p.m.405 views

CVE-2021-33195

Go before 1.15.13 and 1.16.x before 1.16.5 has functions for DNS lookups that do not validate replies from DNS servers, and thus a return value may contain an unsafe injection (e.g., XSS) that does not conform to the RFC1035 format.

7.5CVSS7.6AI score0.00029EPSS
CVE
CVE
added 2022/10/14 3:15 p.m.405 views

CVE-2022-2879

Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB.

7.5CVSS7.8AI score0.00015EPSS
CVE
CVE
added 2023/09/08 5:15 p.m.401 views

CVE-2023-39321

Processing an incomplete post-handshake message for a QUIC connection can cause a panic.

7.5CVSS7.9AI score0.00036EPSS
CVE
CVE
added 2021/08/02 7:15 p.m.396 views

CVE-2021-33197

In Go before 1.15.13 and 1.16.x before 1.16.5, some configurations of ReverseProxy (from net/http/httputil) result in a situation where an attacker is able to drop arbitrary headers.

5.3CVSS6.4AI score0.00037EPSS
CVE
CVE
added 2023/09/08 5:15 p.m.395 views

CVE-2023-39319

The html/template package does not apply the proper rules for handling occurrences of "

6.1CVSS7.1AI score0.00062EPSS
CVE
CVE
added 2020/08/06 6:15 p.m.391 views

CVE-2020-16845

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

7.5CVSS7.7AI score0.00084EPSS
CVE
CVE
added 2021/08/02 7:15 p.m.388 views

CVE-2021-33196

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.

7.5CVSS7.6AI score0.00022EPSS
CVE
CVE
added 2023/06/08 9:15 p.m.380 views

CVE-2023-29403

On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. This can be dangerous in certain cases, such as when dumping memory state, or assuming the status of standard i/o file descriptors. If a setuid/setgid binary is executed with standard I/O...

7.8CVSS8.6AI score0.0001EPSS
CVE
CVE
added 2023/09/08 5:15 p.m.380 views

CVE-2023-39318

The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in [removed] contexts. This may cause the template parser to improperly interpret the contents of [removed] contexts, causing actions to be improperly escaped. This may be leveraged to ...

6.1CVSS7AI score0.00062EPSS
CVE
CVE
added 2023/09/08 5:15 p.m.378 views

CVE-2023-39322

QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With fix, connections now consistently reject messages larger than 65KiB in size.

7.5CVSS7.6AI score0.00036EPSS
CVE
CVE
added 2021/08/07 5:15 p.m.374 views

CVE-2021-29923

Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.

7.5CVSS7.5AI score0.00115EPSS
CVE
CVE
added 2023/12/06 5:15 p.m.374 views

CVE-2023-39326

A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of data (up to about 1G...

5.3CVSS6.1AI score0.00049EPSS
CVE
CVE
added 2020/07/17 4:15 p.m.372 views

CVE-2020-15586

Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as demonstrated by the httputil.ReverseProxy Handler, because it reads a request body and writes a response at the same time.

5.9CVSS6.6AI score0.00614EPSS
CVE
CVE
added 2022/02/11 1:15 a.m.372 views

CVE-2022-23772

Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.

7.8CVSS8.4AI score0.00016EPSS
CVE
CVE
added 2022/03/05 8:15 p.m.364 views

CVE-2022-24921

regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression.

7.5CVSS7.5AI score0.00014EPSS
Total number of security vulnerabilities122