Description
Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.
References (6)
Core 6
Core References
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/rd02e75766cd333a0df417588460f5e4477060633000bfe94955851fd%40%3Cissues.trafficcontrol.apache.org%3E
Release Notes, Third Party Advisory x_refsource_confirm
https://groups.google.com/g/golang-nuts/c/c-ssaaS7RMI
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20201202-0004/
Third Party Advisory x_refsource_misc
https://www.arista.com/en/support/advisories-notices/security-advisories/12166-security-advisory-62
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F3ZSHGNTJWCWYAKY5OLZS2XQQYHSXSUO/
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2W4COUPL3YVTZ6RTEIT6LPBDJUFF3VSP/
Scores
CVSS v3
7.5
EPSS
0.0071
EPSS Percentile
72.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-295
Status
published
Products (5)
fedoraproject/fedora
32
fedoraproject/fedora
33
golang/go
< 1.14.12
netapp/cloud_insights_telegraf_agent
netapp/trident
Published
Nov 18, 2020
Tracked Since
Feb 18, 2026