Описание
This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For header.
Ссылки
- Broken Link
- PatchThird Party Advisory
- Broken Link
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.0 (исключая)
cpe:2.3:a:gin-gonic:gin:*:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.0036
Низкий
7.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-444
Связанные уязвимости
CVSS3: 7.1
ubuntu
около 5 лет назад
This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For header.
CVSS3: 7.1
redhat
около 6 лет назад
This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For header.
CVSS3: 7.1
debian
около 5 лет назад
This affects all versions of package github.com/gin-gonic/gin. When gi ...
CVSS3: 7.1
github
больше 4 лет назад
Inconsistent Interpretation of HTTP Requests in github.com/gin-gonic/gin
EPSS
Процентиль: 58%
0.0036
Низкий
7.1 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-444