Уязвимость CVE-2022-23773

CVE-2022-23773

CVSS3: 7.5

ubuntu

около 4 лет назад

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

CVE-2022-23773

CVSS3: 7.5

redhat

около 4 лет назад

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

CVE-2022-23773

CVSS3: 7.5

nvd

около 4 лет назад

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

CVE-2022-23773

CVSS3: 7.5

debian

около 4 лет назад

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret ...

GHSA-52j8-p7r3-733m

CVSS3: 7.5

github

около 4 лет назад

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.

exploitDog

CVE-2022-23773

Описание

Возможность эксплуатации

Связанные уязвимости