exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 16

BDU:2025-02667

5 месяцев назад

Уязвимость языка программирования Golang, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к учетным данным

CVSS3: 6.1

EPSS: Низкий

CVE-2024-45336

5 месяцев назад

The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2.

CVSS3: 6.1

EPSS: Низкий

CVE-2024-45336

5 месяцев назад

CVSS3: 5.9

EPSS: Низкий

CVE-2024-45336

5 месяцев назад

CVSS3: 6.1

EPSS: Низкий

CVE-2024-45336

4 месяца назад

CVSS3: 6.1

EPSS: Низкий

CVE-2024-45336

5 месяцев назад

The HTTP client drops sensitive headers after following a cross-domain ...

CVSS3: 6.1

EPSS: Низкий

GHSA-7wrw-r4p8-38rx

5 месяцев назад

CVSS3: 6.1

EPSS: Низкий

SUSE-SU-2025:0281-1

5 месяцев назад

Security update for go1.22

EPSS: Низкий

SUSE-SU-2025:0280-1

5 месяцев назад

Security update for go1.23

EPSS: Низкий

ROS-20250212-16

4 месяца назад

Множественные уязвимости golang

CVSS3: 6.1

EPSS: Низкий

ELSA-2025-3772

2 месяца назад

ELSA-2025-3772: go-toolset:ol8 security update (MODERATE)

EPSS: Низкий

SUSE-SU-2025:1555-1

около 1 месяца назад

Security update for go1.22-openssl

EPSS: Низкий

SUSE-SU-2025:0285-1

5 месяцев назад

Security update for go1.24

EPSS: Низкий

SUSE-SU-2025:01731-1

24 дня назад

Security update for go1.23-openssl

EPSS: Низкий

SUSE-SU-2025:0429-1

4 месяца назад

Security update for govulncheck-vulndb

EPSS: Низкий

SUSE-SU-2025:0297-1

5 месяцев назад

Security update for govulncheck-vulndb

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2025-02667 Уязвимость языка программирования Golang, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к учетным данным	CVSS3: 6.1	0% Низкий	5 месяцев назад
CVE-2024-45336 The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2.	CVSS3: 6.1	0% Низкий	5 месяцев назад
CVE-2024-45336 The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2.	CVSS3: 5.9	0% Низкий	5 месяцев назад
CVE-2024-45336 The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2.	CVSS3: 6.1	0% Низкий	5 месяцев назад
CVE-2024-45336	CVSS3: 6.1	0% Низкий	4 месяца назад
CVE-2024-45336 The HTTP client drops sensitive headers after following a cross-domain ...	CVSS3: 6.1	0% Низкий	5 месяцев назад
GHSA-7wrw-r4p8-38rx The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2.	CVSS3: 6.1	0% Низкий	5 месяцев назад
SUSE-SU-2025:0281-1 Security update for go1.22			5 месяцев назад
SUSE-SU-2025:0280-1 Security update for go1.23			5 месяцев назад
ROS-20250212-16 Множественные уязвимости golang	CVSS3: 6.1		4 месяца назад
ELSA-2025-3772 ELSA-2025-3772: go-toolset:ol8 security update (MODERATE)			2 месяца назад
SUSE-SU-2025:1555-1 Security update for go1.22-openssl			около 1 месяца назад
SUSE-SU-2025:0285-1 Security update for go1.24			5 месяцев назад
SUSE-SU-2025:01731-1 Security update for go1.23-openssl			24 дня назад
SUSE-SU-2025:0429-1 Security update for govulncheck-vulndb			4 месяца назад
SUSE-SU-2025:0297-1 Security update for govulncheck-vulndb			5 месяцев назад

Уязвимостей на страницу