Опубликовано: 27 сент. 2025
Источник: github
Github: Прошло ревью
CVSS4: 5.5
CVSS3: 5.3
Описание
github.com/nyaruka/phonenumbers Vulnerable to Improper Validation of Syntactic Correctness of Input
Versions of the package github.com/nyaruka/phonenumbers before 1.2.2 are vulnerable to Improper Validation of Syntactic Correctness of Input in the phonenumbers.Parse() function. An attacker can cause a panic by providing crafted input causing a "runtime error: slice bounds out of range".
Пакеты
Наименование
github.com/nyaruka/phonenumbers
go
Затронутые версииВерсия исправления
< 1.2.2
1.2.2
Связанные уязвимости
CVSS3: 5.3
nvd
4 месяца назад
Versions of the package github.com/nyaruka/phonenumbers before 1.2.2 are vulnerable to Improper Validation of Syntactic Correctness of Input in the phonenumbers.Parse() function. An attacker can cause a panic by providing crafted input causing a "runtime error: slice bounds out of range".