Количество 11
Количество 11
BDU:2025-14527
Уязвимость функции Parse() компонента net-url языка программирования Go, позволяющая нарушителю выполнить произвольный код
CVE-2025-47912
The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement.
CVE-2025-47912
The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement.
CVE-2025-47912
Insufficient validation of bracketed IPv6 hostnames in net/url
CVE-2025-47912
The Parse function permits values other than IPv6 addresses to be incl ...
ROS-20251029-07
Множественные уязвимости golang
GHSA-447v-2qg4-h8hc
The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement.
SUSE-SU-2025:3682-1
Security update for go1.24
SUSE-SU-2025:03547-1
Security update for go1.25
openSUSE-SU-2025:20158-1
Security update for go1.24
openSUSE-SU-2025:20157-1
Security update for go1.25
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-14527 Уязвимость функции Parse() компонента net-url языка программирования Go, позволяющая нарушителю выполнить произвольный код | CVSS3: 7.5 | 0% Низкий | 3 месяца назад |
 | CVE-2025-47912 The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement. | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
 | CVE-2025-47912 The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement. | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
 | CVE-2025-47912 Insufficient validation of bracketed IPv6 hostnames in net/url | 0% Низкий | 3 месяца назад | |
| CVE-2025-47912 The Parse function permits values other than IPv6 addresses to be incl ... | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
 | ROS-20251029-07 Множественные уязвимости golang | CVSS3: 8.2 | 3 месяца назад | |
| GHSA-447v-2qg4-h8hc The Parse function permits values other than IPv6 addresses to be included in square brackets within the host component of a URL. RFC 3986 permits IPv6 addresses to be included within the host component, enclosed within square brackets. For example: "http://[::1]/". IPv4 addresses and hostnames must not appear within square brackets. Parse did not enforce this requirement. | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
 | SUSE-SU-2025:3682-1 Security update for go1.24 | 3 месяца назад | ||
| SUSE-SU-2025:03547-1 Security update for go1.25 | 3 месяца назад | ||
| openSUSE-SU-2025:20158-1 Security update for go1.24 | около 1 месяца назад | ||
| openSUSE-SU-2025:20157-1 Security update for go1.25 | около 1 месяца назад |
Уязвимостей на страницу