golang

207 tracked vulnerabilities.

CVE-2019-11841 MEDIUM
Supplementary Go cryptography libraries - Info Disclosure
May 22, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-11888 CRITICAL
Go <1.12.5 - Info Disclosure
May 13, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-11840 MEDIUM
golang.org/x/crypto <0.0.0-20190320223903 - Memory Corruption
May 09, 2019
CVSS 5.9
EPSS 0.02
CVE-2019-9741 MEDIUM
Go 1.11.5 - CRLF Injection
Mar 13, 2019
CVSS 6.1
EPSS 0.03
CVE-2019-9634 HIGH
Go <1.12 - Code Injection
Mar 08, 2019
CVSS 7.8
EPSS 0.01
CVE-2019-6486 HIGH
GO < 1.10.8 - Resource Allocation Without Limits
Jan 24, 2019
CVSS 8.2
EPSS 0.01
CVE-2018-16875 MEDIUM
Go <1.10.6/1.11.x - DoS
Dec 14, 2018
CVSS 5.9
EPSS 0.01
CVE-2018-16874 HIGH
Go <1.10.6, 1.11.x <1.11.3 - Path Traversal
Dec 14, 2018
CVSS 8.1
EPSS 0.06
CVE-2018-16873 HIGH
Go <1.10.6, <1.11.3 - Remote Code Execution
Dec 14, 2018
CVSS 8.1
EPSS 0.57
CVE-2018-17848 HIGH
golang/net < 2018-09-25 - Denial of Service via Malformed HTML Parsing
Oct 01, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-17847 HIGH
Go html package <2018-09-25 - Info Disclosure
Oct 01, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-17846 HIGH
golang/net < 2018-09-25 - Infinite Loop via Malformed HTML Table Parsing
Oct 01, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-17143 HIGH
golang/net < 2018-09-17 - Denial of Service via Malformed HTML Template Parsing
Sep 17, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-17142 HIGH
golang/net < 2018-09-17 - Use-After-Free in HTML Parser
Sep 17, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-17075 HIGH
Go html package <2018-07-13 - Panic
Sep 16, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-7187 HIGH
GO < 1.9.5 - OS Command Injection
Feb 16, 2018
CVSS 8.8
EPSS 0.08
CVE-2018-6574 HIGH
GO < 1.8.6 - Code Injection
Feb 07, 2018
CVSS 7.8
EPSS 0.37
CVE-2017-15042 MEDIUM
GO < 1.8.3 - Cleartext Transmission
Oct 05, 2017
CVSS 5.9
EPSS 0.00
CVE-2017-15041 CRITICAL
Go <1.8.4, 1.9.x <1.9.1 - Remote Code Execution
Oct 05, 2017
CVSS 9.8
EPSS 0.04
CVE-2017-1000098 HIGH
net/http - DoS
Oct 05, 2017
CVSS 7.5
EPSS 0.00
CVE-2017-1000097 HIGH
Go - Info Disclosure
Oct 05, 2017
CVSS 7.5
EPSS 0.00
CVE-2017-8932 MEDIUM
Go <1.7.6, 1.8.x <1.8.2 - Memory Corruption
Jul 06, 2017
CVSS 5.9
EPSS 0.01
CVE-2017-3204 HIGH
Golang Crypto < 2017-03-17 - Cryptographic Issue
Apr 04, 2017
CVSS 8.1
EPSS 0.00
CVE-2016-5386 HIGH
Fedora < 1.6.3 - Improper Access Control
Jul 19, 2016
CVSS 8.1
EPSS 0.46
CVE-2016-3959 HIGH
Go <1.5.4, 1.6.x <1.6.1 - DoS
May 23, 2016
CVSS 7.5
EPSS 0.02
Products
go 169 velociraptor 7 crypto 6 net 6 http2 5 image 5 text 4 ssh 3 networking 2 tiff 2 glog 1 h2c 1 hpack 1 package_ssh 1 protobuf 1 vscode-go 1
Quick Filters
Critical CVEs With Exploits In CISA KEV