Количество 9
Количество 9
CVE-2021-29923
Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.
CVE-2021-29923
Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.
CVE-2021-29923
Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.
CVE-2021-29923
CVE-2021-29923
Go before 1.17 does not properly consider extraneous zero characters a ...
RLSA-2021:3585
Moderate: go-toolset:rhel8 security update
GHSA-38h6-vxp4-qxvm
Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR.
ELSA-2021-3585
ELSA-2021-3585: go-toolset:ol8 security update (MODERATE)
BDU:2022-01896
Уязвимость компонентов net.ParseIP, net.ParseCIDR языка программирования Go, позволяющая нарушителю оказать воздействие на целостность данных
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-29923 Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-29923 Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR. | CVSS3: 7.3 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-29923 Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад | |
| CVE-2021-29923 Go before 1.17 does not properly consider extraneous zero characters a ... | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | RLSA-2021:3585 Moderate: go-toolset:rhel8 security update | 0% Низкий | около 4 лет назад | |
| GHSA-38h6-vxp4-qxvm Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP and net.ParseCIDR. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| ELSA-2021-3585 ELSA-2021-3585: go-toolset:ol8 security update (MODERATE) | около 4 лет назад | ||
 | BDU:2022-01896 Уязвимость компонентов net.ParseIP, net.ParseCIDR языка программирования Go, позволяющая нарушителю оказать воздействие на целостность данных | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу