CVE-2026-27140

Опубликовано: 03 июн. 2026

Источник: msrc

CVSS3: 9.8

EPSS Низкий

Описание

Code execution vulnerability in SWIG code generation in cmd/go

EPSS

Процентиль: 41%

0.00532

Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2026-27140

CVSS3: 8.8

ubuntu

3 месяца назад

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.

CVE-2026-27140

CVSS3: 9

redhat

3 месяца назад

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.

CVE-2026-27140

CVSS3: 8.8

nvd

3 месяца назад

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.

CVE-2026-27140

CVSS3: 8.8

debian

3 месяца назад

SWIG file names containing 'cgo' and well-crafted payloads could lead ...

GHSA-5w89-2c2x-6x66

CVSS3: 8.8

github

3 месяца назад

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.

EPSS

Процентиль: 41%

0.00532

Низкий

9.8 Critical

CVSS3