CVE-2018-6574

HIGH

GO < 1.8.6 - Code Injection

Title source: rule

Description

Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.

Exploits (94)

nomisec WORKING POC 24 stars
by neargle · poc
https://github.com/neargle/Go-Get-RCE-CVE-2018-6574-POC
nomisec WORKING POC 2 stars
by frozenkp · poc
https://github.com/frozenkp/CVE-2018-6574
nomisec WORKING POC 1 stars
by mux0x · poc
https://github.com/mux0x/CVE-2018-6574
nomisec WORKING POC 1 stars
by the-valluvarsploit · poc
https://github.com/the-valluvarsploit/CVE-2018-6574
nomisec WORKING POC 1 stars
by ItsFadinG · poc
https://github.com/ItsFadinG/CVE-2018-6574
nomisec WORKING POC 1 stars
by Devang-Solanki · poc
https://github.com/Devang-Solanki/CVE-2018-6574
nomisec WORKING POC 1 stars
by Malone5923 · poc
https://github.com/Malone5923/CVE-2018-6574-go-get-RCE
nomisec STUB 1 stars
by wb4r · poc
https://github.com/wb4r/go-get-rce
nomisec TROJAN
by r00tpgp · poc
https://github.com/r00tpgp/CVE-2018-6574
nomisec WORKING POC
by hbxxv · poc
https://github.com/hbxxv/CVE-2018-6574
nomisec WORKING POC
by Rezy-Dev · poc
https://github.com/Rezy-Dev/CVE-2018-6574
nomisec STUB
by YoussefSalama1 · poc
https://github.com/YoussefSalama1/CVE-2018-6574
nomisec WORKING POC
by memmas · poc
https://github.com/memmas/CVE-2018-6574
nomisec WORKING POC
by solovvway · poc
https://github.com/solovvway/CVE-2018-6574
nomisec WORKING POC
by paulogmota · poc
https://github.com/paulogmota/CVE-2018-6574
nomisec WORKING POC
by elw0od · poc
https://github.com/elw0od/PentesterLab
nomisec WORKING POC
by Saboor-Hakimi · poc
https://github.com/Saboor-Hakimi/CVE-2018-6574
nomisec WORKING POC
by lisu60 · poc
https://github.com/lisu60/cve-2018-6574
nomisec WORKING POC
by faqihudin13 · poc
https://github.com/faqihudin13/CVE-2018-6574
nomisec WORKING POC
by iNoSec2 · poc
https://github.com/iNoSec2/cve-2018-6574
nomisec WORKING POC
by bme2003 · poc
https://github.com/bme2003/CVE-2018-6574
nomisec STUB
by Dannners · poc
https://github.com/Dannners/CVE-2018-6574-go-get-RCE
nomisec WORKING POC
by faiqu3 · poc
https://github.com/faiqu3/cve-2018-6574
nomisec WORKING POC
by jftierno · poc
https://github.com/jftierno/CVE-2018-6574
nomisec WORKING POC
by jftierno · poc
https://github.com/jftierno/-CVE-2018-6574
nomisec WORKING POC
by zerbaliy3v · poc
https://github.com/zerbaliy3v/cve-2018-6574-exploit
nomisec WORKING POC
by NsByte · poc
https://github.com/NsByte/CVE-2018-6574
nomisec WORKING POC
by jahwni · poc
https://github.com/jahwni/CVE-2018-6574
nomisec WORKING POC
by antunesmpedro · poc
https://github.com/antunesmpedro/CVE-2018-6574
nomisec WORKING POC
by seoqqq · poc
https://github.com/seoqqq/CVE-2018-6574
nomisec SUSPICIOUS
by chr1sM · poc
https://github.com/chr1sM/CVE-2018-6574
nomisec WORKING POC
by hasharmujahid · poc
https://github.com/hasharmujahid/CVE-2018-6574-go-get-RCE
nomisec WORKING POC
by markisback · poc
https://github.com/markisback/CVE-2018-6574
nomisec WORKING POC
by tjcim · poc
https://github.com/tjcim/cve-2018-6574
nomisec STUB
by Cypheer · poc
https://github.com/Cypheer/exploit_CVE-2018-6574
nomisec WORKING POC
by jftierno · poc
https://github.com/jftierno/CVE-2018-6574-2
nomisec WORKING POC
by yavolo · poc
https://github.com/yavolo/CVE-2018-6574
nomisec WORKING POC
by qweraqq · poc
https://github.com/qweraqq/CVE-2018-6574
nomisec WORKING POC
by twseptian · poc
https://github.com/twseptian/cve-2018-6574
nomisec WORKING POC
by imojne · poc
https://github.com/imojne/CVE-2018-6574-POC
nomisec WORKING POC
by R3dAlch3mist · poc
https://github.com/R3dAlch3mist/cve-2018-6574
nomisec WORKING POC
by l3ouu4n9 · poc
https://github.com/l3ouu4n9/CVE-2018-6574-POC
nomisec WORKING POC
by noobTest1122 · poc
https://github.com/noobTest1122/CVE-2018-6574
nomisec WORKING POC
by jaya522 · poc
https://github.com/jaya522/CVE-2018-6574-go-get-RCE
nomisec WORKING POC
by sec000 · poc
https://github.com/sec000/cve-2018-6574
nomisec WORKING POC
by repos13579 · poc
https://github.com/repos13579/labCVE-2018-6574
nomisec TROJAN
by OLAOLAOLA789 · poc
https://github.com/OLAOLAOLA789/CVE-2018-6574
nomisec WORKING POC
by MohamedTarekq · poc
https://github.com/MohamedTarekq/test-CVE-2018-6574-
nomisec WORKING POC
by theJuan1112 · poc
https://github.com/theJuan1112/pentesterlab-cve-2018-6574
nomisec WORKING POC
by killtr0 · poc
https://github.com/killtr0/POC-CVE-2018-6574
nomisec WORKING POC
by purgedemo · poc
https://github.com/purgedemo/CVE-2018-6574_2
nomisec WORKING POC
by purgedemo · poc
https://github.com/purgedemo/CVE-2018-6574
nomisec WORKING POC
by PLP-Orange · poc
https://github.com/PLP-Orange/cve-2018-6574-exercise
nomisec WORKING POC
by vishack · poc
https://github.com/vishack/CVE-2018-6574
nomisec WORKING POC
by NikolaT3sla · poc
https://github.com/NikolaT3sla/cve-2018-6574
nomisec TROJAN
by shadofren · poc
https://github.com/shadofren/CVE-2018-6574
nomisec SUSPICIOUS
by noname-nohost · poc
https://github.com/noname-nohost/CVE-2018-6574
nomisec STUB
by mhamed366 · poc
https://github.com/mhamed366/CVE-2018-6574
nomisec STUB
by jongmartinez · poc
https://github.com/jongmartinez/CVE-2018-6574-POC
nomisec WORKING POC
by pswalia2u · poc
https://github.com/pswalia2u/CVE-2018-6574
nomisec STUB
by lsnakazone · poc
https://github.com/lsnakazone/cve-2018-6574
nomisec WORKING POC
by kawkab101 · poc
https://github.com/kawkab101/cve-2018-6574
nomisec WORKING POC
by TakuCoder · poc
https://github.com/TakuCoder/CVE-2018-6574
nomisec WORKING POC
by illnino · poc
https://github.com/illnino/CVE-2018-6574
nomisec WORKING POC
by it3x55 · poc
https://github.com/it3x55/CVE-2018-6574
nomisec WORKING POC
by darthvader-htb · poc
https://github.com/darthvader-htb/CVE-2018-6574
nomisec WORKING POC
by zur250 · poc
https://github.com/zur250/Zur-Go-GET-RCE-Solution
nomisec WORKING POC
by coblax · poc
https://github.com/coblax/CVE-2018-6574
nomisec SUSPICIOUS
by Eugene24 · poc
https://github.com/Eugene24/CVE-2018-6574
nomisec WORKING POC
by yitingfan · poc
https://github.com/yitingfan/CVE-2018-6574_demo
nomisec WORKING POC
by AdriVillaB · poc
https://github.com/AdriVillaB/CVE-2018-6574
nomisec WORKING POC
by nthuong95 · poc
https://github.com/nthuong95/CVE-2018-6574
nomisec WORKING POC
by No1zy · poc
https://github.com/No1zy/CVE-2018-6574-PoC
nomisec WORKING POC
by sdosis · poc
https://github.com/sdosis/cve-2018-6574
nomisec WORKING POC
by kev-ho · poc
https://github.com/kev-ho/cve-2018-6574-payload
nomisec WORKING POC
by drset · poc
https://github.com/drset/golang
nomisec WORKING POC
by asavior2 · poc
https://github.com/asavior2/CVE-2018-6574
nomisec STUB
by InfoSecJack · poc
https://github.com/InfoSecJack/CVE-2018-6574
nomisec WORKING POC
by french560 · poc
https://github.com/french560/ptl6574
nomisec STUB
by chaosura · poc
https://github.com/chaosura/CVE-2018-6574
nomisec STUB
by mekhalleh · poc
https://github.com/mekhalleh/cve-2018-6574
nomisec WORKING POC
by d4rkshell · poc
https://github.com/d4rkshell/go-get-rce
nomisec SUSPICIOUS
by duckzsc2 · poc
https://github.com/duckzsc2/CVE-2018-6574-POC
nomisec STUB
by veter069 · poc
https://github.com/veter069/go-get-rce
nomisec STUB
by 20matan · poc
https://github.com/20matan/CVE-2018-6574-POC
nomisec TROJAN
by redirected · poc
https://github.com/redirected/cve-2018-6574
nomisec WORKING POC
by ahmetmanga · poc
https://github.com/ahmetmanga/cve-2018-6574
nomisec STUB
by ahmetmanga · poc
https://github.com/ahmetmanga/go-get-rce
nomisec WORKING POC
by acole76 · poc
https://github.com/acole76/cve-2018-6574

Scores

CVSS v3 7.8
EPSS 0.3679
EPSS Percentile 97.2%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (11)
debian/debian_linux 9.0
golang/go 1.9
golang/go 1.9.1
golang/go 1.9.2
golang/go 1.9.3
golang/go 1.10 beta1 (3 CPE variants)
golang/go < 1.8.6
redhat/enterprise_linux_server 7.0
redhat/enterprise_linux_server_aus 7.6
redhat/enterprise_linux_server_eus 7.6
... and 1 more
Published Feb 07, 2018
Tracked Since Feb 18, 2026