Уязвимость CVE-2022-30580

CVE-2022-30580

CVSS3: 7.8

ubuntu

около 3 лет назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

redhat

около 3 лет назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

nvd

около 3 лет назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

CVE-2022-30580

CVSS3: 7.8

debian

около 3 лет назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 ...

GHSA-2v97-2cxm-mvp4

CVSS3: 7.8

github

около 3 лет назад

Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either "..com" or "..exe" by calling Cmd.Run, Cmd.Start, Cmd.Output, or Cmd.CombinedOutput when Cmd.Path is unset.

exploitDog

CVE-2022-30580

Описание

Возможность эксплуатации

Связанные уязвимости