Уязвимость CVE-2021-29923

CVE-2021-29923

CVSS3: 7.5

ubuntu

больше 4 лет назад

Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.

CVE-2021-29923

CVSS3: 7.3

redhat

больше 4 лет назад

Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.

CVE-2021-29923

CVSS3: 7.5

nvd

больше 4 лет назад

Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.

CVE-2021-29923

CVSS3: 7.5

debian

больше 4 лет назад

Go before 1.17 does not properly consider extraneous zero characters a ...

RLSA-2021:3585

rocky

около 4 лет назад

Moderate: go-toolset:rhel8 security update

exploitDog

CVE-2021-29923

Описание

Возможность эксплуатации

Связанные уязвимости