Lucene search

Arbitrary Code Execution

🗓️ 15 Jan 2019 09:49:21Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 21 Views

Vulnerability in go get command for Arbitrary Code Execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 58
Tenable Nessus	Fedora 27 : golang (2018-5562b6e2c0)	21 Feb 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : go (openSUSE-2018-218)	5 Mar 201800:00	–	nessus
Tenable Nessus	Fedora 26 : golang (2018-6f08b79a09)	28 Feb 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : go1.8 (openSUSE-2018-235)	8 Mar 201800:00	–	nessus
Tenable Nessus	Photon OS 1.0: Go PHSA-2018-1.0-0117	7 Feb 201900:00	–	nessus
Tenable Nessus	Photon OS 1.0: Go PHSA-2018-1.0-0117 (deprecated)	17 Aug 201800:00	–	nessus
Tenable Nessus	RHEL 7 : go-toolset-7 and go-toolset-7-golang (RHSA-2018:1304)	4 May 201800:00	–	nessus
Tenable Nessus	Photon OS 2.0: Go PHSA-2018-2.0-0026	7 Feb 201900:00	–	nessus
Tenable Nessus	GLSA-201803-03 : Go: User-assisted execution of arbitrary code	8 Mar 201800:00	–	nessus
Tenable Nessus	Amazon Linux AMI : golang (ALAS-2018-975)	27 Mar 201800:00	–	nessus

Vulners

Node

go-toolset-7 go-toolset-7Match1.8_6.el7

go-toolset-7 go-toolset-7Match1.8_9.el7

go-toolset-7 go-toolset-7Match1.8_10.el7

go-toolset-7 go-toolset-7Match1.8_4.el7

go-toolset-7-golang go-toolset-7-golangMatch1.8.5_1.el7

go-toolset-7-golang go-toolset-7-golangMatch1.8.3_4.el7

go-toolset-7-golang go-toolset-7-golangMatch1.8.3_3.el7

golang golangMatch1.4.2_9.el7

golang golangMatch1.9.2_4.el7

golang golangMatch1.9.2_2.1.el7rhgs

golang golangMatch1.8.4_1.el7cp

golang golangMatch1.6.3_2.el7

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/documentation/en-us/red_hat_developer_tools/2018.2/html/using_go_toolset/
access	www.access.redhat.com/support/offerings/techpreview/
access	www.access.redhat.com/errata/RHSA-2018:1304
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/updates/classification/
debian	www.debian.org/security/2019/dsa-4380
github	www.github.com/golang/go/issues/23672
github	www.github.com/KINGSABRI/CVE-in-Ruby/tree/master/CVE-2018-6574
groups	www.groups.google.com/forum/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jan 2019 09:21Current

8.2High risk

Vulners AI Score8.2

CVSS24.6

CVSS37.8

EPSS0.30955