Уязвимость CVE-2022-30580

CVE-2022-30580

CVSS3: 7.8

ubuntu

почти 3 года назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

redhat

почти 3 года назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

nvd

почти 3 года назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

debian

почти 3 года назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 ...

GHSA-2v97-2cxm-mvp4

CVSS3: 7.8

github

почти 3 года назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

exploitDog

CVE-2022-30580

Описание

Возможность эксплуатации

Связанные уязвимости