Количество 2
Количество 2
CVE-2021-4236
Web Sockets do not execute any AuthenticateMethod methods which may be set, leading to a nil pointer dereference if the returned UserData pointer is assumed to be non-nil, or authentication bypass. This issue only affects WebSockets with an AuthenticateMethod hook. Request handlers that do not explicitly use WebSockets are not vulnerable.
GHSA-5gjg-jgh4-gppm
Websocket requests did not call AuthenticateMethod
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-4236 Web Sockets do not execute any AuthenticateMethod methods which may be set, leading to a nil pointer dereference if the returned UserData pointer is assumed to be non-nil, or authentication bypass. This issue only affects WebSockets with an AuthenticateMethod hook. Request handlers that do not explicitly use WebSockets are not vulnerable. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| GHSA-5gjg-jgh4-gppm Websocket requests did not call AuthenticateMethod | CVSS3: 9.8 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу