golang

207 tracked vulnerabilities.

CVE-2025-58187 HIGH
Certificate Validation - Info Disclosure
Oct 29, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-58185 MEDIUM
GO < 1.24.8 - Resource Allocation Without Limits
Oct 29, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-47912 MEDIUM
Go net/url Parse - Bracketed Host Validation Bypass
Oct 29, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-47906 MEDIUM
LookPath - Path Traversal
Sep 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-47907 HIGH
GO < 1.23.12 - Race Condition
Aug 07, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-4674 HIGH
Go - Code Injection
Jul 29, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-6264 MEDIUM
Velociraptor < 0.7.4.3 - Authenticated Remote Code Execution via Admin.Client.UpdateClientConfig Artifact
Jun 20, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-0913 MEDIUM
GO < 1.23.10 - Symlink Following
Jun 11, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-45339 HIGH
glog < 1.2.4 - Symlink Attack via Predictable Log File Path
Jan 28, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-24790 CRITICAL
Various Is Methods - Info Disclosure
Jun 05, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-24789 MEDIUM
Archive/Zip - Info Disclosure
Jun 05, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-3566 CRITICAL
Windows - Command Injection
Apr 10, 2024
CVSS 9.8
EPSS 0.10
CVE-2023-48795 MEDIUM NUCLEI
OpenSSH <9.6 - Open Redirect
Dec 18, 2023
CVSS 5.9
EPSS 0.53
CVE-2023-45285 HIGH
go get - Path Traversal
Dec 06, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-39326 MEDIUM
HTTP - Info Disclosure
Dec 06, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-45287 HIGH
GO < 1.20.0 - Information Disclosure
Dec 05, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-45284 MEDIUM
Windows - Info Disclosure
Nov 09, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-45283 HIGH
GO < 1.20.11 - Path Traversal
Nov 09, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-39325 HIGH
GO < 1.20.10 - Resource Allocation Without Limits
Oct 11, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 0.94
CVE-2023-39323 HIGH
Go <build> - Code Injection
Oct 05, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-39322 HIGH
GO < 1.21.1 - Resource Allocation Without Limits
Sep 08, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-39321 HIGH
GO < 1.21.1 - Denial of Service
Sep 08, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-39320 CRITICAL
GO < 1.21.1 - Code Injection
Sep 08, 2023
CVSS 9.8
EPSS 0.01
CVE-2023-39319 MEDIUM
GO < 1.20.8 - Cross-Site Scripting
Sep 08, 2023
CVSS 6.1
EPSS 0.00
Products
go 169 velociraptor 7 crypto 6 net 6 http2 5 image 5 text 4 ssh 3 networking 2 tiff 2 glog 1 h2c 1 hpack 1 package_ssh 1 protobuf 1 vscode-go 1
Quick Filters
Critical CVEs With Exploits In CISA KEV